Home Networking

[Lisa Winkler]

I am probably going to get flamed by the more security-minded people in the group, but....

I wanted real-world IPs.  I didn't want the hassle of IP Masquerading.  So, instead of a firewall I have an old P-60 with 2 NICs set up as a bridge, with IP Filter running on them.  Cable modem comes in NIC 1, IP Filter drops any packets I don't want on my network, and the rest go back out through NIC 2 to my hub and on to my other 2 boxes.  The "firewall" box is headless; I have a 3rd NIC that I use to administer it, but I can only get into it from within my network since it has a private IP.  Because there is no way of reaching it from the outside world (short of breaking into one of the other boxes on my network I suppose) I don't worry too much about it being hacked.  

IMO this was a much easier setup than NAT, and less worrisome.

Lisa

On Fri, 11 Jan 2002, Technomage wrote:

> I did that here without a problem....
> 
> I use 2 nics in the box and it handles NAT/port forwarding without 
> much fanfare (in fact, I am seding this message from a box behind the
> linux router/firewall).
> 
> Technomage
> 
> "Bruner, Andrew" wrote:
> > 
> > I'm getting Cox@home and plan on using a Linux box as a firewall. Do I need
> > to also configure it as a router? Should I just go out and buy a router? Do
> > I need a router at all? I have an 8 port hub that I was planning on using in
> > conjunction with the Linux box as a firewall. Will that work?
> > Thanks for any comments.
> > -Andrew
> > ________________________________________________
> > See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't post to the list quickly and you use Netscape to write mail.
> > 
> > PLUG-discuss mailing list  -  PLUG-discuss@lists.PLUG.phoenix.az.us
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> 
>