LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Three firewalls

Three firewalls

Posted Oct 28, 2011 10:50 UTC (Fri) by josh (subscriber, #17465)
In reply to: Three firewalls by Stephen_Beynon
Parent article: LCE2011: Kernel developer panel

"wired only network with the machines I care about" doesn't work so well when laptops constitute more than half the machines you care about. :)

(Log in to post comments)

Three firewalls

Posted Oct 28, 2011 16:04 UTC (Fri) by jmalcolm (guest, #8876) [Link]

Well, he did say that the WIFI stuff was all on the outer network. "Wired" machines can be reached without trouble once you have breached the network as normal networking is not encrypted or secured. So, you need to protect the network (and the hosts) with things like firewalls.

You cannot put a firewall around wireless which is why wireless networking requires encryption and authentication. It is also why you do not let your wireless network inside the firewall of wired machines "you care about".

Three firewalls

Posted Oct 31, 2011 7:48 UTC (Mon) by ekj (guest, #1524) [Link]

You can have a encrypted, wireless network, and tunnel all your traffic to/from laptops you care about trough a VPN to the more secure cabled internal network.

Yeah, it gets complicated.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds