![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
yesthattomI’ve said it before and I’ll say it a again... if you come to me asking how to build a firewall out of a linux box and two NICs, I’m going to tell you that it costs $70. Take that $70 and go to CompUSA and buy a darn “home router” and don’t bother me. It will be done in less than an hour, it will be more reliable, it won’t have a noisy fan, and it will use less power. The reduction in power will pay for itself in a year. For $40 more it will do WiFi without having to figure out the bizarre and badly engineered WiFi stuff that comes with most *nixes. If you want reliability, buy the Linksys model with built-in WiFi, 802.11g, WPA, and the built-in 4-port hub.
Now if you come to me saying, “Tom, I’m trying to learn about networking and security and I thought that building a firewall from scratch with a linux box and two NICs” then I’ll gladly offer advice (mostly by pointing you to FAQs and such).
However, most of the time I’ll help you pick the right Linksys. At least it uses embedded Linux and is hackable.
That is all.
Now if you come to me saying, “Tom, I’m trying to learn about networking and security and I thought that building a firewall from scratch with a linux box and two NICs” then I’ll gladly offer advice (mostly by pointing you to FAQs and such).
However, most of the time I’ll help you pick the right Linksys. At least it uses embedded Linux and is hackable.
That is all.
![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
no subject
Date: 2005-11-25 03:02 pm (UTC)Word.
Oh, and happy thanksgiving!
Why indeed
Date: 2005-11-25 03:56 pm (UTC)I've got that Motorola router that I bought at the last $GROUPNAME meeting which I'll put OpenWRT on when I have a chance. Fun.
no subject
Date: 2005-11-25 04:21 pm (UTC)I used to have a Linux machine as my firewall because I wanted my WLAN and LAN to be seperated, but in the end simple convenience meant there was almost do distinction between them, so I replaced with the the Linksys (and gained the 4 port built-in 100Tx switch - Note a switch and not a hub).
no subject
Date: 2005-11-25 06:09 pm (UTC)And I thought I heard that the new Linksys routers weren't using Linux anymore?
http://blogs.zdnet.com/open-source/?p=491
no subject
Date: 2005-11-25 06:32 pm (UTC)Usually what gets me squick'd more is hearing about people going "I have (DSL|Cablemodem) and I want to be able to use it with another PC in the house." "Well don't you have a (DSL|Cablemodem) Router?" "A what?" "Is your PC plugged directly into that (DSL|Cablemodem)?" "Yeah, why wouldn't it be? Oh, would you happen to know why my machine runs so slow all the time?" (inner_voice:SCREAM)
And then you get the people who don't understand why anyone would try to break into *their* computer, cuz who are they to get hacked, anyway. "But, you see, it doesn't matter that it's your computer. It's just that it's a computer on the (DSL|Cable) network." "But what do they think they'll get from my computer? It's not like I have anything major here." "It doesn't matter. They're just looking for any computer they can hack into. By being unprotected on that network, you're a ripe apple for picking." "But they don't know who I am, why would they want to get into my PC?" (inner_voice:ARRGH)
Though, usually, I'm able to explain to a good 80% of people I've talked to about it, why they should have one.
no subject
Date: 2005-11-25 06:46 pm (UTC)There are some people who want to run services in a DMZ, but they're by far the minority.
no subject
Date: 2005-12-13 10:12 pm (UTC)I didn't go for Linksys, but... it works and it is indeed much easier than trying to do it via sharing one PC's connection.