On 2023-05-02 12:45, Carlos E. R. wrote:
On 2023-05-02 19:06, Darryl Gregorash wrote:
On 2023-05-02 04:13, Carlos E. R. wrote:
On 2023-05-02 08:44, Per Jessen wrote:
Carlos E. R. wrote:
It might be easier if you simply listed the reasons for using a firewall on a trusted network. I find the idea intriguing.
I find the idea of not running it intriguing and naive.
If you feel you need a firewall on a trusted network, perhaps you really need a more robust set of rules on your external firewall.
As it is, the current external firewall, which belongs to the ISP (and can not be replaced by one of my own, so don't ask again), claims to firewall but does nothing at all. This became known when they activated IPv6 a week ago for a Beta test.
Now you have me really confused. How is the external firewall in any way relevant to issues relating to internal firewalls? If you have/learn of security issues with that external firewall, you could simply put your own firewall/router (a separate computer running Linux) between the ISP's equipment and your local network(s). In fact, I had assumed this is exactly what you had done, the moment you noticed problems with the ISP's firewall. BTW, that personal router/firewall could not be considered part of any trusted network. At best, it would be part of a DMZ, though I personally would treat it as part of the external net.