LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 12-19-2004, 11:29 PM   #1
DuctTapeNZ
LQ Newbie
 
Registered: Dec 2004
Posts: 1

Rep: Reputation: 0
Is my network design all messed up?


I'm setting up a firewall for my familys home network. It has 3 pc's on it- a real basic server (ie shared documents are the only thing it's really 'serving'), my laptop and my parents desktop. Currently they're all running into the same network switch and then through the router into the internet.

I was intending to take the server, install some firewall software and a second network card on it and put it at the 'point of entry' to act as a firewall. Hence all internet activity would go from the router through the server then into one of the two clients. However I get the impression from what I read that this is a bad idea, because I share documents and use vnc networking from the server.

The option is to get out our old pentium 100 and throw a network card and some firewall software on it (probably ipcop) and use it as a dedicated firewall which would feed into the switch which would have all three other computers connected to it.

I prefer the former purely out of convenience- only one computer sitting under the stairs where all the network cables meet, and I wouldn't have to dust off the p100. But security is paramount- I want to end up with a setup thats more secure than what I have now rather than less, if that sentance makes any sense.

Basically I'm asking whether I can get away with having shared resources on my firewall without having a serious security risk.

Oh and the router itself can be assumed to have no real firewall features.

Last edited by DuctTapeNZ; 12-19-2004 at 11:32 PM.
 
Old 12-20-2004, 12:08 AM   #2
niknah
Member
 
Registered: Dec 2002
Location: In front of a computer
Distribution: UPS, DHL, FedEx
Posts: 466

Rep: Reputation: 38
as long as your firewall is secure and upgraded often, it's fine. Once your firewall is broken into, all the files and stuff in it can be accessed.
 
Old 12-20-2004, 03:22 AM   #3
floppywhopper
Member
 
Registered: Aug 2004
Location: Western Australia
Distribution: Mageia , Centos
Posts: 643
Blog Entries: 2

Rep: Reputation: 136Reputation: 136
Dust off the old P 100 and turn it into a firewall.
Consider also Monowall, a BSD based firewall.

Consider the Geek factor of telling your friends you run a BSD firewall.

live long and prosper
floppy
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
m0n0wall + network design kurrupt Linux - Networking 1 11-12-2005 11:40 PM
I need a tool for network design ?!? ynunes Linux - Software 1 03-18-2004 07:52 AM
Network Design for Larger Network goldcougar Linux - Networking 2 11-21-2003 10:58 AM
what software for network design? realos Linux - Software 2 06-08-2003 04:05 PM
80/20 rule in network design?? Acar Linux - Networking 1 02-19-2002 08:04 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:57 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration