- Re: Hardware router/firewall [Linksys BEFSX41 v2]
- Posted by Duane Arnold on March 25th, 2005
Yeah Melissa, I saw your post over there in the FW NG. I think it was
explained to you better than what I can do - but now you know that the NAT
router is not a FW appliance and an attack will come through it like a hot
knife through butter if the conditions are right. And that is why I had to
supplement the machines running IIS and SQL Server on them with IPsec and
BlackIce behind the NAT router to stop the attacks and there was no port
forwarding or triggering being done, which means all ports on the NAT
router were closed by default. I don't run with either IPsec or BlackIce
anymore because the WatchGuard SOHO 6 FW appliance has a true FW that stops
that kind of thing as opposed to the Linksys NAT router or any NAT router
for that matter that couldn't stop it.
You're doing the right thing in supplementing that NAT router if you plan
on doing more than the average user.
Duane 
- Posted by Jafo on March 26th, 2005
As viewed from alt.comp.anti-virus, Duane Arnold wrote:
You're concerned about security and you're running IIS?
--
Jafo
- Posted by Duane Arnold on March 26th, 2005
"Jafo" <a@nospam.invalid> wrote in message
news:35va41h4pu7gtmi3tgm34slgv3hfceg9s0@4ax.com...
Well in order to do ASP.NET development programming on the MS Windows
Platform, yes I must use IIS since it's tightly coupled with IIS. But since
..Net is a standard like Java is a standard and is platform independent, .Net
will run on the Linux platform too with using Apache. Therefore, I must
protect them both with a FW appliance.
http://www.mono-project.com/Mono:About
I just passed the .Net C# Windows Based Application MSCD test and I am now
studying for the .NET C# Web Development using ASP.NET test using machines
on my home network, to bring myself up to speed because the job requires
that I do that. I got three more tests to go after this test -- to go get
that .NET $$$$
And you're a moron and clueless.
Duane
- Posted by Jafo on March 29th, 2005
As viewed from alt.comp.anti-virus, Duane Arnold wrote:
Just couldn't resist that childish little barb at the end, could
you?
So the bottom line is that if you're running IIS, you've certainly
done the right thing by educating yourself as well as possible about
security matters. You'll need all that knowledge, and more.
--
Jafo
- Posted by Duane Arnold on March 29th, 2005
On my network that's a given. At the job, that is somebody else's job.
Duane
