Re: security question


----- Original Message -----
From: "sinisa" <sinisac@xxxxxxxxxxxx>
Newsgroups: comp.security.firewalls
Sent: Saturday, October 07, 2006 9:41 AM
Subject: Re: security question




If I want total separations of machines in a LAN situation, I would be
doing it with a two router solution.

You can get a second good router on sale for about $20.



Ok great so another router is the way to go
BTW i dont care about spending 20-200$ if that is the best solution .

I'll put it do you this way. A standalone device solution, in your case,
such as a second router if you want absolute protection from the other
machines on the LAN is the best solution.
..
What second router should i use ,what is best known for good firewall and
security performance?

The security is in the separation of the two networks, in your case, where
as, the machine you're trying to protect will not receive any unsolicited
inbound traffic not only from the Internet but from other machines on your
LAN. The second router is going to flat-out stop that from happening.

The second router is only going to allow inbound traffic back to the machine
that the machine has sent outbound traffic to it whether that be outbound
traffic is to a remote IP on the Internet or to another machine on the LAN.
You put that second router in play and the machine will not be able to talk
to other machines in a LAN situation connected to another router. Nor will
the other machine connected to the other router will be able to talk to the
machine that has been segregated.

The router you need to make sure that it has all the bells and whistles on
it you want is the gateway router that's connected to the modem and is the
Internet facing router. The router that's doing network segregation behind
the gateway router can be an el-cheap-o of anything you want. It doesn't
make a difference.

I saw a guy in another NG post that he got a Linksys for $10 at Best Buy.

Duane :)


.

Relevant Pages

  • OT: Internet access for old RH machine
    ... Currently I use it stand-alone and has no LAN or Internet access configured. ... However occasionally I would really like to access certain web sites on ... I know it's no longer updated, supported and probably full of security ... I was wondering if there was a way I could connect it to my router, ...
    (Fedora)
  • Re: simulate attacks
    ... Well to simulate a wan your lan on the router would be fine for now. ... Website like sans reading room tons of info as well security focus. ...
    (comp.security.unix)
  • Re: Network Hardware
    ... LAN With Two Routers" and now wonder whether or not to send this message as ... I was also hoping to use the DLink Router ... have to go through the router to get to the internet on the other subnet. ...
    (microsoft.public.windowsxp.network_web)
  • Re: DirectPlay troubleshooting
    ... Number 6 does indeed recommend *disabling* that feature of your router ... as it is a troubleshooting step which has solved LAN gaming issues in some ... MS Games Help and Support Center: http://support.microsoft.com/?pr=gms ... ||| out directplay by establishing a 'chat' session, ...
    (microsoft.public.games)
  • SBS 2003 Premium, Multi-Homed, Problem with OMA
    ... LAN port in use on that router is the SBS 2003 Premium box. ... NIC as primary DNS with the wireless router as secondary DNS. ...
    (microsoft.public.windows.server.sbs)
Loading