Hi Ross
My first name is Tobias, BTW. :-)
> I guess I should have clarified, I currently have a firewall setup using
> the PMFirewall script on a linux box.
>
I don't know that script myself, I've always made my own.
> The typical setup with two nic
> cards in the linux box, one for internal another for external. The
> external card is tied to the cable modem. I have a 10Mb hub tied the
> internal card and a PC and a Mac. I just purchased a linksys 5 port
> switch and wanted to know the best way to set this up.
>
Well, replacing the internal hub with the new switch definitely makes sense
and can buy you a little security, because it is possible to make sniffing
harder with a switch - depends on the switch, though. Apart from that, your
setup hasn't changed, so there's not much of an increase in security. You
could achieve additional security by running some proxies or relays on the
Linux NAT box, however, if the proxies aren't coded well, this could also
reduce your security. It's all in the specifics.. At home, I run Squid on
the Linux gateway box, as well as BIND in caching mode. I'd like to switch
the latter to dnscache and set up qmail or postfix to act as a mail relay
(which is handled by NAT so far), but haven't had the time for it yet..
HTH
Tobias
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
