Tommyastro
join:2004-01-18
Poughkeepsie, NY
 ·RoadRunner Cable
| reply to novaflare
Re: Hardware Firewall
Dragon,
The guy for some reason has a bug in his bonnet against the lower priced Linksys, ignore his comment. The $50 linksys I have is not bad, it works just fine as I said. It has been blocking EVERYTHING, including the HUNDREDS of Mydoom attempts the past week or 2. I use Link Logger (paid for it 2 days after downloading it) and it works great also, shows/tells you everything.
As I said, there is NOTHING wrong with the BEFSR41 I have, it's been working like a champ for a month now nonstop.
Tom |
|
Tursiops_G
Technoid
Premium,MVM
join:2002-02-06
Norwalk, CT
clubs:
·Optimum Online
3 edits | reply to novaflare
Edit: something went wrong with this post... Reposted at end of thread (?) :/
(original text):
Or, How about getting that old 8MB 486/66 box out of the basement/garage/junkpile, removing the HD, installing 2 ISA NICs, and running the FREE GnatBox Light S/W »www.gnatbox.com from Floppy? Total cost: $0.00 (if you already have the PC and the 2 NIC cards on hand, that is.) |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| reply to Qumahlin
said by Qumahlin  :
said by Tommyastro :
There is NOTHING wrong with a $50 router. I have one and it works just great. Big bucks don't always mean the best.
Try again.
Um yes it works as a router...but not as a true firewall, especially if it's a crap linksys router.
first /me waves to the other smoothwall users on the forum and asks do you know of any software that reads the logs from it like wallwatcher for example (pm me if you do)
and now why are linksys routers so bad? Minbe is a old befsr41 thats now sering as nothing more than switch hub what ever you want to call it. I bought it new when it was new how ever many years ago that was and have had no problems ever. Is there some huge exploit that breaks the defenses it has for your lan or what ? just curious here i hear people say how bad they are but never what makes them bad.
--
my fav mmorpg »www.rubiesofeventide.com my site »spellbound.valshea.com/news.php |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| reply to Corvus
said by Corvus :
And good hardware firewall doesn't mean a 50$ router 
How about a nice beat up 133 compaq desk pro with this smoothwall.org going in to a 50dolor router acting as a hub. does that qualify as a good set up (see previous post i also use sygate). Smoothwall turns any old comp in to what amounts to a hardware firewall. Remember firewalls hard ware or other wise are ran by software. Theres other alternatives out there both pay and free coyote linux is another turn a old comp in to a hardware fire wall linux distro. And m0n0 wall can be installed on some old routers and other similar devices also a distro that works on pc of m0n0wall. Hard ware fire walls don't need to cost 150 200 300+ dolors or be custom built you can make one your self cheap. Mine cost me a old 160watt psu i paid 20 bucks for like 6 months ago for example that i traded for a compaq deskpro p133.
--
my fav mmorpg »www.rubiesofeventide.com my site »spellbound.valshea.com/news.php |
|
qdemn7
Smurf in My Loop
Premium
join:2003-09-16
Fort Worth, TX
| reply to AnonGuy
said by AnonGuy:
I run Smoothwall, (www.smoothwall.org) and it does a great job. Easy setup, web interface etc.. Check it out.
Thanks for the heads up. I'm running ZA Pro + NAV 2003 behind my DLink and I'm pretty happy.
--
"It's the squares who know how to fly the fighter planes and operate the missiles and the bombs and work the M-16s. Liberals would still be fumbling with the federally mandated trigger locks." -- P.J. O'Rourke |
|
tc17
join:2003-08-14
| reply to Tommyastro
said by Tommyastro :
There is NOTHING wrong with a $50 router. I have one and it works just great. Big bucks don't always mean the best.
Try again.
I totally agree. Except some people seem to think something isn't good unless it costs big bucks. This thinking is why our Goverment pays $1000 for a hammer. |
|
AnonGuy
@verizon.ne | reply to qdemn7
I run Smoothwall, (www.smoothwall.org) and it does a great job. Easy setup, web interface etc.. Check it out. |
|
IronChefMoto
Premium
join:2001-02-08
Alpharetta, GA
| reply to Lindy0001
said by Lindy0001:
for god sakes have semi-complex passwords on your systems.
So..."password" or "secret" aren't good passwords to be using? DAMN! FOILED AGAIN!
IronChefMorimoto
--
Desktop: Abit NF7-S 2.0 | AMD AthlonXP 2500+ | 1GB PC3200 DDR | 128MB ATI Radeon 9500 Pro
Laptop: Dell Latitude C810 | Intel PIII-M | 512MB PC133 SDRAM | 32MB Nvidia GeForce2 Go |
|
Lindy0001
@comcast.net
| reply to Tommyastro
Conclusion: Healthy Setup! We could detect no interesting responses from any of the commonly probed TCP and UDP ports. It would be difficult for an attacker to know where to start without further information
___________________________________________________________
All that security from my $50 Linksys router. I dont run firewall software in the inside of my router. I have an WWW/FTP server running on Windows 2003 with those ports forwarded to it, and three XP Pro clients.
I have never been hacked to my knowledge. I dont believe you need expensive hardware or software...you just need to know WTF your doing.
Having good Anti-Virus software always updated, POP blocker like google bar (free), spyware software like Ad aware (free), you $50 Router set to repsond to nothing on the internet, and running windows update everyday set to download and install. Dont use stupid software like Kaza and for god sakes have semi-complex passwords on your systems. |
|
Corvus
Flaming Tards Since 2003
Premium,VIP
join:2003-11-26 | reply to Corvus
Never heard any exploits about accessing linksys console on Wan side?  |
|
Rhobite
Premium
join:2002-02-24
Cambridge, MA
clubs:
| reply to IronChefMoto
Re: But...COMPUSA wouldn't lie...right?
What attack is not blocked by a simple NAT router? Obviously the thing doesn't protect you from e-mails and DOS attacks, but I don't understand all these people saying that a simple hardware firewall is somehow inadequate.
--
Jimmysquid.com - I take pictures. |
|
IronChefMoto
Premium
join:2001-02-08
Alpharetta, GA
| reply to Corvus
said by Corvus :
And good hardware firewall doesn't mean a 50$ router
But...but...but...this week's COMPUSA newspaper ad told me a $29 D-Link router would block ANY attack that came into my computer? And COMPUSA's weekly sale paper wouldn't lie, right? Nor would those well-informed technically expert salespeople in the store right? RIGHT?! 
IronChefMorimoto
--
Desktop: Abit NF7-S 2.0 | AMD AthlonXP 2500+ | 1GB PC3200 DDR | 128MB ATI Radeon 9500 Pro
Laptop: Dell Latitude C810 | Intel PIII-M | 512MB PC133 SDRAM | 32MB Nvidia GeForce2 Go |
|
shuubz
A Good Kind Of Pain
join:2001-02-12
Dexter, MI
|  reply to qdemn7
HW Firewall
Netgear FVS-318, updated firmware, remote admin turned OFF.
List price is USD149.00 for a true-stateful-inspection appliance.
Can clone a MAC address on the external interface, in case you use a Comcast-like, sphincter-grade ISP that registers MAC addies. Includes an 8-port 10/100mb switch.
Good set-it-and-forget-it security, will even email/ship logs to a designated syslogd-enabled entity.
--
What is left for the meek is not worth having...I don't need a shepherd, I need a Muse...The only thing I can call my own is who I am; insecurity is pointless. |
|
Bobcat
Premium
join:2001-02-04
Bedminster, NJ
 ·Verizon Online DSL
| reply to Corvus
Re: Hardware Firewall
said by Corvus :
And good hardware firewall doesn't mean a 50$ router
For a typical home user who doesn't run servers, a regular NAT router is fine. It will drop all unsolicited connection attempts.
--
"...Saddam Hussein still has chemical and biological weapons..."
» George W. Bush, October 7, 2002. |
|
Qumahlin
Never Enough Time
Premium,MVM
join:2001-10-05
united state
| reply to Tommyastro
said by Tommyastro :
There is NOTHING wrong with a $50 router. I have one and it works just great. Big bucks don't always mean the best.
Try again.
Um yes it works as a router...but not as a true firewall, especially if it's a crap linksys router.
--
Forum Posts:4004 |
|
qdemn7
Smurf in My Loop
Premium
join:2003-09-16
Fort Worth, TX
| reply to Mellow
said by Mellow :
For the best I would go for a PIX. But your everyday consumer cant afford or configure that kind of setup. I recommend something that has SPI and has rule sets. An easy user gui doesnt hurt either. If you want cheap you can find the Netgear FVS318 at staples for $150. I have this installed at a remote office handling VPN with no problems. If you want to go cheaper and have a spare box you can do a smoothwall/ipcop/etc.. linux software firewall. I use ipcop at home and love it, it runs fine on an old cyrix 586 with 64megs in it. Just chunked in 3 nics and configured it, so now I got wan,lan,dmz. You cant beat that price $0.
Tanks for the info. That Netgear looks like a good deal for $120 @ Newegg. Actually I was thinking of upgrading to Zywall 10W. I've been very happy with my $30 DLink DI604, but I'm always thinking about what's next.
--
"It's the squares who know how to fly the fighter planes and operate the missiles and the bombs and work the M-16s. Liberals would still be fumbling with the federally mandated trigger locks." -- P.J. O'Rourke |
|
Mellow
Premium
join:2001-11-16
Salisbury, MD
 ·HostGator
·Cavalier Telephone
| reply to qdemn7
For the best I would go for a PIX. But your everyday consumer cant afford or configure that kind of setup. I recommend something that has SPI and has rule sets. An easy user gui doesnt hurt either. If you want cheap you can find the Netgear FVS318 at staples for $150. I have this installed at a remote office handling VPN with no problems. If you want to go cheaper and have a spare box you can do a smoothwall/ipcop/etc.. linux software firewall. I use ipcop at home and love it, it runs fine on an old cyrix 586 with 64megs in it. Just chunked in 3 nics and configured it, so now I got wan,lan,dmz. You cant beat that price $0. |
|
Tommyastro
join:2004-01-18
Poughkeepsie, NY | reply to Corvus
There is NOTHING wrong with a $50 router. I have one and it works just great. Big bucks don't always mean the best.
Try again. |
|
koitsu
Premium
join:2002-07-16
Mountain View, CA | reply to qdemn7
A pair of scissors. |
|
qdemn7
Smurf in My Loop
Premium
join:2003-09-16
Fort Worth, TX
| reply to Corvus
said by Corvus :
And good hardware firewall doesn't mean a 50$ router
So what would you (and Mellow) reccommend as a "good" hardware firewall? |
|
