[aclug-L] Re: Router questions
[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]
NOTHING IS SECURE. A hardware solution is more, in such the hardware
solution is missing the tools needed to change things. Even a linux box has
a text editor. That is what made the frazier-wall so effective; he removed
everything from the os, not even a text editor. You had to recompile it to
make changes. It ran entirely off a 31/2 floppy disk. At work I go on the
premise that my stuff has been hacked over night and start from there. I
prove all is well.
Mike
-----Original Message-----
From: discussion-bounce@xxxxxxxxx [mailto:discussion-bounce@xxxxxxxxx] On
Behalf Of Steven Saner
Sent: Monday, May 18, 2009 2:26 PM
To: discussion@xxxxxxxxx
Subject: [aclug-L] Re: Router questions
On May 18, 2009, at 1:48 PM, Dale W Hodge wrote:
> I could use the help of some network pros before I rework my network.
> First off I have a small lan with 8 computers. Currently I have two
> linux boxes working as firewalls for my network but I'm considering
> replacing them with some kind of hardware router and moving those
> boxes
> to a DMZ. My network gets hammered by port scans and break-in
> attempts,
> badly enough so that my ISP is offering to trade out IP's so they can
> use mine for their honeypot!
>
> The questions I have are two fold, whether replacing them with a
> hardware solution would enhance security and if so what kind of router
> should I purchase? I have looked at both low cost residential routers
> on up to Cisco SOHO routers like the 831/851/871. I know some of the
> residential routers run a linux derivative, so are there any preferred
> models I should consider? Or should I move on up to a Cisco or is it
> overkill for small office like mine?
Well, perhaps you need to describe a little bit more what you are
trying to secure, but I really don't see that some "off the shelf"
router is going to be any more secure than a Linux box, assuming that
you know what you are doing at least to some extent. With a Linux box
you can tweak it to do almost anything. You are much more limited in
your options with a commercial product.
If you either are not comfortable driving a Linux router or don't want
to, you might look at http://www.smoothwall.org/. It is an open source
Linux based project that turns an x86 computer into a router/firewall
with more features than many commercial ones.
Steve
--
---------------------------------------------------------------
Steven Saner
steve@xxxxxxxxx
-- This is the discussion@xxxxxxxxx list. To unsubscribe,
visit http://www.complete.org/cgi-bin/listargate-aclug.cgi
-- This is the discussion@xxxxxxxxx list. To unsubscribe,
visit http://www.complete.org/cgi-bin/listargate-aclug.cgi
|
|