-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 10/05/15 17:37, James Knott wrote:
On 05/10/2015 10:30 AM, Bob Williams wrote:
And presumably I choose 'Internal Zone'?
There you're talking about a firewall protecting a network, rather than one protecting a single computer. The zone refers to which side of the firewall you're talking about. External would be the interface connected to the Internet and internal, your local lan. If you're protecting a single computer, then everything else is external. However, if you have a firewall facing the Internet, do you really need one on computer connected to your local network?
This is where my old brain finds it difficult to understand the concepts. The firewalls I'm talking about are on each machine in the house connected to the NAT router, which in turn is connected to the Internet. So from your last remark, they are all protected by the router, and do not need to be running separate software firewalls themselves? The router (Draytek Vigor 2830Vn) claims to have a 'firewall' inside it, but I have never changed the default settings. I also understand that the process of 'Network Address Translation' causes rejection of any unsolicited packets from outside, which constitutes a sort of firewall. Are you saying I can rely on that? Thank you for your help and advice. Bob - -- Bob Williams System: Linux 3.16.7-7-desktop Distro: openSUSE 13.2 (x86_64) with KDE Development Platform: 4.14.3 Uptime: 06:00am up 7:55, 3 users, load average: 0.16, 0.05, 0.06 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlVPlw4ACgkQ0Sr7eZJrmU6SlwCfWtZUOX3WrwCtPM1+cVFQV9N6 yLQAnifIlkLy6jvWPZgv4xrJKIvuAxmG =2VMG -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org