Replying to "Nuno Ferreira"
The (umm.. NETGEAR 8 Port 10/100 Mbps Ethernet) switch is something I bought 7
years ago when I first started to network my SOHO. Win 95 and 98. So I have
always felt compelled to keep it. Ethernet switches allow your Ethernet cards
to operate in Full Duplex mode. It's mainly a hub, bridge.
I use it as a uplink for others devices, workstations, servers. Keep the
work-horse off of the firewall/router, if and when I share *LARGE* files on
my LAN. Sending and receiving data at the same time, gets dedicated bandwidth
instead of shared bandwidth.
Separating systems that have sensitive data from the rest of the network
decreases the chances that people will gain access to information they are
not authorized to see.
There is something about this that eliminates the need for other workstations
attached, to examine each packet broadcast on the netwok, I think.
For a boring read:
http://www.microsoft.com/technet/security/guidance/secmod40.mspx
See Figure 2. It's like my basic SOHO.
This computer duty is E-mail and Chat only.
invalid@addr3ss:~> su -
Password:
addr3ss:~ # route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
link-local * 255.255.0.0 U 0 0 0 eth1
10.0.0.0 * 255.0.0.0 U 0 0 0 eth1
loopback * 255.0.0.0 U 0 0 0 lo
default 10.10.2.16 0.0.0.0 UG 0 0 0 eth1
Genmask
The netmask for the destination net; '255.255.255.255' for a
host destination and '0.0.0.0' for the default route.
Flags Possible flags include
U (route is up)
H (target is a host)
G (use gateway)
R (reinstate route for dynamic routing)
D (dynamically installed by daemon or redirect)
M (modified from routing daemon or redirect)
A (installed by addrconf)
C (cache entry)
! (reject route)
Firewall/Router
|
|
Switch
/ \
/ \
Linux XP
Don't feel bad, I'm a newbie also.
Happy Holidays to all.
Invalid Addr3ss
On Friday 10 December 2004 03:30, Nuno Ferreira wrote:
Hi.
I am a newbie in this area, and I found intriging your using of a switch
after the router...can you tell me what´s the use of it?
Regards
Nuno
-----Original Message-----
From: Invalid Addr3ss [mailto:invalid_addr3ss@excite.com]
Sent: domingo, 5 de Dezembro de 2004 7:53
To: suse-security@suse.com; focus-virus@securityfocus.com
Subject: Where to Deploy Trend Micro viruswall?
Hello All
I was wondering where to put a Trend Micro Viruswall in my network.
My basic setup follows below. SOHO
Internet
Cable Modem
Firewall/Router
Switch
/ | \
/ | \
Linux | XP
Print Server
Printer
Thanks
Invalid Addr3ss
--
Q) What do you get when you mix a spammer with a hacker?
A) A Spacker