On Sat, Nov 30, 2002 at 11:49:44AM -0600 or thereabouts, lrnobs wrote:
> > What kind of router did you buy? Most routers now come with a built-in
> > firewall, that will block everything automatically coming in. This is
> > typical for syslink, netgear, d-link, etc. This provides full protection
> > even before the RH firewall.
>
> The router is D-Link DI-704P. Does the Class C address scheme by itself
> give any protection?
No, that is for your own internal network. With the router you have, by
default, you have 100% protection. All ports are blocked coming in,
unless you have changed something. Please read the material that came
with the router. It also provides NAT for you, by default, so that your
internal address will be seen to the world as your external IP address,
same for all machines on your LAN, if you have a LAN.
If you plan on running specific services, i.e. a web server, or mail
server, DNS, etc, you will specifically have to go in and change the
D-Link to open up these ports coming in, and assign them to the local IP
address of the machine that will provide that service. It should be in
your manual that came with D-Link on how to do this, but it is very easily
done with the web interface. If you do not plan on providing any service
at this time, you do not have to open up any ports in D-Link. You can, at
any time, use D-Link's web interface to check your logs to see who and
what port has been blocked. Right now, it is usually port 137, 80, 53,
25, probably in that order, that are being blocked by the bad guys.
--
Best regards,
Gary
sed '/^[when][coders]/!d
/^...[discover].$/d
/^..[real].[code]$/!d
' /usr/share/dict/words
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
