On Mon, 2002-11-11 at 13:13, Ed Wilts wrote: > On Mon, Nov 11, 2002 at 09:53:02AM -0800, jdow wrote: > > Tony, the best approach, from my experience, is to find a spare machine, > > say an old 75 MHz Pentium, and set it up with a pair of NICs as your > > firewall and network gateway using NAT. That will hide all your other > > serious machines behind some level of protection. This will allow for > > gadgets such as network printers and such. > > In my experience, that's the wrong answer. You're far better off, > long-term, to purchase one of those low-end home-oriented firewall boxes > like a Linksys cable/dsl router. You'll have one less system to manage > and it's a lot smaller with a lot less power, heat, and noise issues.
I have both a linksys router and a linux (alpha) gateway/firewall available to me at home. I prefer the linux gateway/firewall because it makes me think about how to set up and secure my services in an environment where I won't be fired for screwing up. If you do go the linksys router route, make sure your firmware is up to date, earlier firmware is susceptible to a simple DOS attack. See: http://www.idg.net/english/crd_router_961704.html -- ********************************************************************** Chris Kloiber, RHCE Red Hat,Inc. Hardware Certification aka 1801 Varsity Dr. Enterprise Support "WireHead" Raleigh, NC 27606 **********************************************************************
