On 14 Dec 2003 22:35:35 -0500 Lyvim Xaphir <[EMAIL PROTECTED]> wrote:
> Yes, I can elaborate. I have a Zyxel router here that has features much > the same as what you described, however I am still unable to match the > flexibility of a firewall running iptables/shorewall to the point where > I can route incoming traffic to a specific port range on a specific > local IP within the local lan. I can route "a" port but not a "range" > of ports; very annoying. I spent a nearly a week going over the > capabilities of the router appliance trying to find a fix and there > wasn't one even when you went to the command line of the box. Also you > must realize that the router appliance has a "full OS" of it's own, > which in many cases is in fact Linux, but unadvertised as such. Actually, no one recommended an "appliance". I recommended that the OP invest about 50 - 100 bucks in a used machine, and for sheer ease of use and features, you simply cannot beat something like Smoothwall. Built in features such as Snort IDS, VPN, Web Proxy, dynamic DNS, *and* it supports forwarding by range, not just by port. All this by simply booting from a CD. Did I mention it also has the ability to download and install updates as they become available? I don't think the OP is looking for industrial-grade NSA level security here, they're looking for a fair balance of useability and security without having to break out the IPTables handbook. I *do* think you are looking for an opportunity to be a disagreeable prick. -- JoeHill ++ ICQ # 280779813 Registered Linux user #282046 Homepage: www.orderinchaos.org +++++++++++++++++++++++++++ "The philosophers have only interpreted the world in various ways. The point, however, is to change it."-- Karl Marx
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
