Re: Port Forwarding - rc.firewall

[ABrady <kcsmart kc rr com>]

On Fri, 03 Aug 2001 23:55:49 -0700 Julius Smith <jos w3k org> imparted
to us:

> Thanks very much for your kind offer.  I would be curious to see it,
> but I 
> no longer need it.  Since I wanted a wireless hub anyway, I went out
> today 
> and bought for $260 a LinkSys BEFW11S4 (802.11b wireless + DSL Router
> + 4 
> 10/100 ethernet hub --- see 
> http://www.linksys.com/products/product.asp?prid=173&grid=19 if
> interested 
> --- in the interests of vendor neutrality, there is a good article in
> PC 
> World on wireless/wired hubs/routers at 
> http://www.pcworld.com/reviews/article/0,aid,50415,pg,1,00.asp).
> 
> This one little box freed up a wireless PC card (I was using
> peer-to-peer 
> previously), gave me a reasonable NAT firewall, added three new
> ethernet 
> ports to my LAN, freed up my old firewall PC, and gave me some
> valuable new 
> space in my office.
> 
> I wonder if there is any reason to want more firewall protection than
> what 
> these boxes provide?
> 
> Thanks again for your offer to help, and I would still be curious to
> see 
> the script.
> 
> Cheers,
> Julius <jos w3k org>

I wish I could be more specific. But, I distinctly recall reading in the
last few weeks about someone using some hardware firewalls that were
hacked. I'd say, firewall or no, keep more than a single layer of
security (firewall, intrusion detection, log monitoring, etc) and keep a
close eye on what's running and what isn't on your system.

This is me personally, but I'd even consider a second layer of
firewalling, just to make things harder for script kiddies.
 

-- 
It's no use arguing. I've already made up your mind.