Not logged in
Log in now
Create an account
Subscribe to LWN
Deadline scheduling: coming soon?
LWN.net Weekly Edition for November 27, 2013
ACPI for ARM?
LWN.net Weekly Edition for November 21, 2013
GNU virtual private Ethernet
So, Linus is not even behind seven proxies? What poor security!
Memes aside, I have to ask professionally: why is three firewalls better than one? Or, should I worry that I only have one firewall?
Posted Oct 27, 2011 12:23 UTC (Thu) by erwbgy (subscriber, #4104)
It is hard to tell whether this is actually worthwhile or an unnecessary expense.
Posted Oct 27, 2011 12:59 UTC (Thu) by Stephen_Beynon (✭ supporter ✭, #4090)
I have a firewall in my adsl gateway protecting my "insecure" network. The insecure network has wifi/games consoles/set top box network/guest access.
I have a firewall between this insecure network and a wired only network with the machines I care about.
Most of my machines have a software firewall as standard making for a third level of firewall.
Posted Oct 28, 2011 10:50 UTC (Fri) by josh (subscriber, #17465)
Posted Oct 28, 2011 16:04 UTC (Fri) by jmalcolm (guest, #8876)
You cannot put a firewall around wireless which is why wireless networking requires encryption and authentication. It is also why you do not let your wireless network inside the firewall of wired machines "you care about".
Posted Oct 31, 2011 7:48 UTC (Mon) by ekj (subscriber, #1524)
Yeah, it gets complicated.
Posted Oct 28, 2011 15:53 UTC (Fri) by jmalcolm (guest, #8876)
You use two firewalls to create a DMZ which is of course a pretty typical setup.
Add a personal firewall on your own machine (again, a standard security recommendation) and presto--you have three firewalls.
Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds