{"id":329,"date":"2008-07-10T10:41:03","date_gmt":"2008-07-10T17:41:03","guid":{"rendered":"http:\/\/www.laurenwood.org\/anyway\/?p=329"},"modified":"2008-07-10T10:41:03","modified_gmt":"2008-07-10T17:41:03","slug":"reworking-the-network","status":"publish","type":"post","link":"https:\/\/www.laurenwood.org\/anyway\/2008\/07\/reworking-the-network\/","title":{"rendered":"Reworking the network"},"content":{"rendered":"<p>Up till now I\u2019ve been run\u00adning the home fire\u00adwall and a couple of minor web\u00adsites from an old (1996 or there\u00adabouts) Pen\u00adti\u00adum 3 box in the base\u00adment, that uses Debi\u00adan. It seems to work reas\u00adon\u00adably well, and has been fend\u00ading off bots and oth\u00ader threats with adequate fero\u00adcity. There seems no reas\u00adon, how\u00adever, to think that the num\u00adber of attacks will decrease in the next little while, and every reas\u00adon to sus\u00adpect that one of these days the hard disk will fail, leav\u00ading me without a fire\u00adwall. The web\u00adsites are backed up and eas\u00adily restor\u00adable, the time to set up a fire\u00adwall and get it work\u00ading with a <a href=\"http:\/\/en.wikipedia.org\/wiki\/Point-to-Point_Protocol_over_Ethernet\">PPPoE<\/a> con\u00adnec\u00adtion to an <span class=\"caps\">ISP<\/span> that does\u00adn\u2019t under\u00adstand Linux is what will take the&nbsp;time.<\/p>\n<p>So I\u2019ve been won\u00adder\u00ading about rejig\u00adging the whole net\u00adwork, get\u00adting an off-the-shelf hard\u00adware firewall\/router that can feed into the wire\u00adless router. I\u2019m a little para\u00adnoid about get\u00adting some\u00adthing that is secure but not intend\u00ading to spend thou\u00adsands. We\u2019ve blocked all ports except the neces\u00adsary ones on the sys\u00adtem right now, except for allow\u00ading <span class=\"caps\">SSH<\/span> access in and out, and, of course, port 80 for the web sites. Secur\u00adity will be par\u00adtic\u00adu\u00adlarly import\u00adant as the kids move into the teen\u00adage years and start want\u00ading to down\u00adload&nbsp;stuff.<\/p>\n<p>I\u2019m look\u00ading for some advice here. Do I need any\u00adthing more than <span class=\"caps\">NAT<\/span>, <span class=\"caps\">DMZ<\/span>, and for\u00adward\u00ading appro\u00adpri\u00adate ports to intern\u00adal serv\u00aders, which I can get from stand\u00adard con\u00adsumer-level router\/firewalls? Any par\u00adtic\u00adu\u00adlarly good brands and mod\u00adels I should look&nbsp;for?<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Up till now I\u2019ve been run\u00adning the home fire\u00adwall and a couple of minor web\u00adsites from an old (1996 or there\u00adabouts) Pen\u00adti\u00adum 3 box in the base\u00adment, that uses Debi\u00adan. It seems to work reas\u00adon\u00adably well, and has been fend\u00ading off bots and oth\u00ader threats with adequate fero\u00adcity. There seems no reas\u00adon, how\u00adever, to think \u2026 <a href=\"https:\/\/www.laurenwood.org\/anyway\/2008\/07\/reworking-the-network\/\" class=\"more-link\">Con\u00adtin\u00adue read\u00ading<span class=\"screen-reader-text\"> \u201cRework\u00ading the network\u201d<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"wp_typography_post_enhancements_disabled":false,"activitypub_content_warning":"","activitypub_content_visibility":"","activitypub_max_image_attachments":3,"activitypub_interaction_policy_quote":"","activitypub_status":"","footnotes":""},"categories":[6],"tags":[],"class_list":["post-329","post","type-post","status-publish","format-standard","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts\/329","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/comments?post=329"}],"version-history":[{"count":0,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/posts\/329\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/media?parent=329"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/categories?post=329"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.laurenwood.org\/anyway\/wp-json\/wp\/v2\/tags?post=329"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}