| |||||||||||||
Three firewallsThree firewallsPosted Oct 27, 2011 12:59 UTC (Thu) by Stephen_Beynon (guest, #4090)In reply to: Three firewalls by man_ls Parent article: LCE2011: Kernel developer panel
I don't know about the setup Linus uses, but I have multiple firewalls protecting different classes of device.
I have a firewall in my adsl gateway protecting my "insecure" network. The insecure network has wifi/games consoles/set top box network/guest access.
I have a firewall between this insecure network and a wired only network with the machines I care about.
Most of my machines have a software firewall as standard making for a third level of firewall.
(Log in to post comments)
Three firewalls Posted Oct 28, 2011 10:50 UTC (Fri) by josh (subscriber, #17465) [Link]
"wired only network with the machines I care about" doesn't work so well when laptops constitute more than half the machines you care about. :)
Three firewalls Posted Oct 28, 2011 16:04 UTC (Fri) by jmalcolm (guest, #8876) [Link]
Well, he did say that the WIFI stuff was all on the outer network. "Wired" machines can be reached without trouble once you have breached the network as normal networking is not encrypted or secured. So, you need to protect the network (and the hosts) with things like firewalls.
You cannot put a firewall around wireless which is why wireless networking requires encryption and authentication. It is also why you do not let your wireless network inside the firewall of wired machines "you care about".
Three firewalls Posted Oct 31, 2011 7:48 UTC (Mon) by ekj (guest, #1524) [Link]
You can have a encrypted, wireless network, and tunnel all your traffic to/from laptops you care about trough a VPN to the more secure cabled internal network.
Yeah, it gets complicated.
|
|||||||||||||