ATT Broadband internet info wanted

jkinz at rcn.com jkinz at rcn.com
Mon Sep 23 15:57:19 EDT 2002


On Mon, Sep 23, 2002 at 03:11:01PM -0400, Derek D. Martin wrote:
> At some point hitherto, jkinz at rcn.com hath spake thusly:
> > Does anyone have any suggestions about what type of firewall config
> > is the most straight-forward and reliable for setting up multiple
> > PC's to share a cable internet connection ?
> 
> If you need easy configuration, I'd suggest you go with a firewall
> appliance.  I have no experience with them, so I'll leave it up to
> others to recommend one...
> 
> However, configuring a firewall correctly is complicated, and IMO the
> best thing to do, if you can spend the time, is to learn how to do it
> yourself, and run a dedicated machine for that purpose.  Doing so will

Hi Derek, thanks.  Thats actually fairly close to what I am running now
to share my dial-up access across my local LAN.  Its not a firewall, just 
a NAT router but it allows nicely fine-grained control over individual
ports, and protocols as well as ranges of ports.  I currently don't allow
anything to create a connection from outside which saves me a lot of
headaches, :-).  Burns up a lot of log file space on my Redhat server
though.  Distinctly an acceptable trade-off to being cracked however.

This software runs on a standalone system as a DOS program booted under 
MS-W95 (yeah, I know.. ).  But it works.  Its very stable.

I'm hoping to hear what other folks are doing using a more linux based
solution that keeps security intact and still allows decent utilization
of the AT&T broadband speed.

I like your idea of learning a firewall system inside and out.  I almost
always end doing the most fine grained effort due to my nature.

-- 
Jeff Kinz, Director, Emergent Research,  Hudson, MA.  "jkinz at ultranet.com" 
"jkinz at rcn.com" copyright 2002.  Use is restricted. Any use is an 
acceptance of the offer at http://users.rcn.com/jkinz/policy.html.

    ()B¬_                                    -o)
    //\         eLviintuaxbilse            /\\    
    V_/_                                  _\_V   



More information about the Discuss mailing list