Carlos, et al -- ...and then Carlos E. R. said... % % On 03/02/2019 05.47, David T-G wrote: % > % > But that puts a "good" server on the same network as all of those IoT % > devices. Shouldn't we want the fridge and the thermostat and so on to % > not even be able to see a computer we want to protect? % % Certainly not. % % I have an intelligent fridge, for sure I want to talk to it from home % and maybe from outside too. Yes. The computer can talk to the fridge, but the fridge shouldn't see the computer. % % What good is an intelligent toaster if I can not see when the toast is % ready from my android phone or my computer? I might buy instead a toaster. *grin* ...and then Carlos E. R. said... % % On 03/02/2019 06.14, Toshi Esumi wrote: % > ... % > But IoT devices never get hacked or virus infected unless it's connected % > to the internet. And the FW is controlling both those IoT devices and % > your servers, etc. % ... % those connections by default. And blocking them negates the utility to % control the sitting room intelligent lamp from the phone... It may well be that one can talk directly to the fridge without going out to its central web server. I dunno; my thermostat, for instance, isn't like that. But if you have your trusted machines (and maybe your phone) in the safe network, they can still see the fridge in the outer ring. If you put your phone on the outer ring, then it can see them directly. Sooooo... How doesn't it work? HANW :-D -- David T-G See http://justpickone.org/davidtg/email/ See http://justpickone.org/davidtg/tofu.txt -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org