[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On Tue, 25 Jan 2005 13:20:51 +0000 William Fidell wrote:
At the moment I'm behind the ISP's firewall plus a personal firewall on my machine. The ISP's one stealths all ports on it's own but I keep the personal firewall on as assurance against both incoming and outgoing traffic.I am on Blueyonder and as such the modem doesn't have a firewall. To protect my home network (2 XP boxes, 1 linux server and 1 linux laptop) I use IPCOP. Basically, I went down to the computer graveyard shop in Plymouth (I forget the name) and got a £50 machine to install it on and a couple of network cards. I already had a hub to contect the internal network.
"The Computer Shop" - now on Cobourg St. Fantastic shop. When they were in the Armada Complex I used to enjoy picking through their boxes of "stuff". They seem to have cut down on that side of things - not that I imagine for one moment that it was any money spinner.
Installation hit a few snags because I got mixed up which interface was green and which was red. But it runs almost without fault, and since I have installed the latest version (1.4.0) without any faults.
I tend to make certain that my IPCop boxen have 2 *different* NICs. Before physical installation of the card(s) I put a little bit of Green/Red insulating tape around the metal face-plate.
I was a bit confused initialy setting it up, having only been used to windows application permission type firewalls but soon it makes a lot of sense.
You think that's confusing! Cisco routers have this whole "wildcard mask" thing too! But they all look quite similar after a while.
It is also kind of scary viewing all the logs and seeing how many hits you get, but with snort on as well kind of interesting.
Yep! I found that I keep getting SNORT entries from Wanadoo France's IPs. I wonder if they know... Grant. -- Artificial intelligence is no match for nuratal stidutipy. -- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe.