Hi, I'm about to reorganize my network. I'm considering adding a firewall.
The thing is, I'm confused about why I need to have a whole separate
firewall machine sitting between my DSL jack and the rest of my public
network. Doesn't that control the inflow/outflow of each of the boxes
on the other side? Why does a firewall give me more security than just
making sure that my boxes don't have open ports and unnecessary services
turned on? Soon as I need a service, don't I need to open up a hole in
the firewall anyway?
I'll have three boxes that will need to have static IPs for one reason
or another. Could I instead easily just make one be a firewall for itself
and the other two so I don't have to get myself yet another linux box?
How would that work? Second nic to be the gateway of the other two even
if the other two still have static IPs? Which document/book should I
read to teach me about the more advanced parts of LAN networking?
Thanks,
Curt
