On Mon, 6 May 2002, Harry Putnam wrote:
> julius <[EMAIL PROTECTED]> writes: > > > I am glad to see discussion about system security because I am just > > considering to build a small LAN. > > Currently, I use a DSL connection with a SMC Barricade router in front of my > > RedHat 7.2 box. SMC advertised Barricade as a router that has an effective > > built-in firewall. > > > > I do not plan to connect the rest of the computers to the SMC router, but to > > a separate switch, through a second ethernet card on the RedHat box. > > I have a very similar setup. Including the two nics in the middle > like yours. Sorry I can't comment on Barricade since I use a Netgear > FR-314. But I do run a second line of defense on what would be your > 7.2 box. Portsentry, running in default config there would provide > notification on most hackish like activity. > > To see how effective your Barricade is, have a friend `nmap' your > router. Or you do it if you have access to a remote machine where you > can run it. Otherwise there are online sources to check you out. > Sorry I have no urls handy. Maybe try > > Google with a string like +security +test +nmap > > If nmap shows no available ports, it is fairly secure. If you setup a stateful firewall, then you can have any services running on your server (doesn't mean that I recommend it) and nmap will show you no available ports. Setting up a stateful firewall is easy. You can't get a better protection. See http://www.puschitz.com/FirewallAndRouters.html Werner _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
