On Apr 26, 2025, at 00:24, David King <d...@daveking.com> wrote: > As to firewalls: > > Plugging the workstation directly into the Comcast cable modem puts your > computer directly on the internet, where everyone can hack away at it trying > to break in. I always put some sort of router in between the cable modem and > my computer. They're available for cheap and are usually plug-and-play. The > router connects directly to cable modem, i.e., the internet, and gets a > public address while the workstation connects to a private local intranet > created by the router. Nothing on the workstation can be accessed from the > public internet unless I specifically change the router's configuration to > forward ports through it to my workstation. In the situation you described > there would be no need to do such a thing. When connected in this manner the > computer can see everything on the internet, but nobody on the internet can > reach the computer.
As a Comcast customer, it’s actually a pain to get a modem that is just that. Most consumers get a modem/gateway/wifi AP by default, which should put the user behind an ipv4 NAT. However, it usually also gives you a public ipv6 address. So you need to be extra careful about it, and not assume that since your comcast gateway put you on a NAT that you are safe. Comcast does block a lot of services with the non-business accounts though. So if you add another gateway, be aware that you will likely be double-NAT’d. -- Jonathan Billings -- _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue