Tom's Hardware > Forum > General Networking > General Gateways, Routers and Firewalls > firewall and connect through server

firewall and connect through server

Forum General Networking : General Gateways, Routers and Firewalls - firewall and connect through server

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
mopeygoth   12-10-2004 at 12:55:40 AM

I have been thinking...

i have a server running 24/7 with win2k3, it runs with an ip firewall (peerguardian), outpost firewall software and of course the router's hardware firewall. it is pretty hardcore ;)

The other PCs in the house also run with firewall software and the likes, taking up valueable system resources (especiall ram-access!). I know by now everyone will be bitching about only a hardware firewall is needed, but just quit it; i know, but don't care.

my question is:
If I uplink the switch to the server, and there by makes it the only internet connection gateway, and share the connection: Will the software/hardware/ip firewall then still intercept, block, smack, purge and kill ANYTHING (as with the normal setup) going through the server by the client computers internet browser.

in other terms: is it just as (or more even) sure/secure?

tnx for your reads

Abit IC7 Max II Adv.- P4E3.0@3.6 - CNPS7000B-CU - i875P - 1024mb dual ddr400 3-2-2-5 - Leadtek 6800 128mb@380/850 - 600W dualfan(front/rear) PowerTek Psu - maxtor 4K080H4 & 6Y120P0 - samsung sm-352b

Add a reply
Sponsored Links
Register or log in to remove.
tmlim   12-10-2004 at 04:30:19 PM
- 0 +

That is pretty hardcore.

I think your setup will be just as secure. That server alone will do the trick, and you don't need the client software firewalls. OOPS, I'm bitching! :smile:

"A delayed game will eventually come out, a bad game is bad forever."
-Shigeru Miyamoto

Reply to tmlim
jihiggs   12-10-2004 at 11:56:09 PM
- 0 +

a decent firewall installed on a computer will block all data trying to access it. ics is no different. imho you are a paranoid fool for having that much crap in your network.

this is my boomstick!

Reply to jihiggs
folken   12-11-2004 at 02:26:11 AM
- 0 +

I think all that crap will cause more of a headache for you than any good for your network. If anyone REALLY wanted to get through they probably good enough to get past anything regardless of what you have. If you just want to filter incomming spam like viruses and icmp traffic just a little home router will suffice. You really don't need anything more than that in a home. If you have a buisness going you probably have/should have a firewall appliance like a pix, then you DEFINATLY don't need anything more.
Just having something between you and the internet is good enough as far as internet traffic spam goes.

<A HREF="http://www.folken.net/myrig.htm" target="_new">My precious...</A>

Reply to folken
mopeygoth   12-11-2004 at 05:34:38 AM
- 0 +

The ip blocker stops about 5-20 a day, the software firewall blocks about 25.000 (incl. packets to closed ports) a week and the router, well who knows.. I don't get any crap inwards :)

the question was NOT weither I should have 700 firewalls running at once, but weither the a server-thru connection is reliable in terms of safety, since it isn't the servers webbrowser etc., but the clients that is active most of the time

Reply to mopeygoth
jihiggs   12-13-2004 at 08:43:15 PM
- 0 +

the internal firewalls will get that many hits just because of normal windows traffic. doesnt mean jack.

this is my boomstick!

Reply to jihiggs
mopeygoth   12-13-2004 at 08:49:13 PM
- 0 +

sure thing man, but it's just a server.. it's not my main pc, and yes; tons of the blocked are local addresses, and quite a few are not.

But how about the main question in mind?

Abit IC7 Max II Adv.- P4E3.0@3.6 - CNPS7000B-CU - i875P - 1024mb dual ddr400 3-2-2-5 - Leadtek 6800 128mb@380/850 - 600W dualfan(front/rear) PowerTek Psu - maxtor 4K080H4 & 6Y120P0 - samsung sm-352b

Reply to mopeygoth
jihiggs   12-13-2004 at 09:02:22 PM
- 0 +

so.... right now you have all your computers hooked up to a router switch, and you want to hook only the server up to the switch and share the internet connection through the server to the other computers? you will be going through two levels of nat. i dont know how well that will work, ive never tried it. and no one in their right mind would need to. your just making things extremely complicated. the whole point of a router is so you dont need a pc dedicated to sharing the internet connection. im all for experimentation but your not experimenting, if you were you would have just tried it yourself and found the answers yourself. you have no idea what your doing and you have no idea what your asking. your just foaming at the mouth trying to sound smart.

this is my boomstick!

Reply to jihiggs
mopeygoth   12-14-2004 at 12:39:38 AM
- 0 +

yes, that right Router -> Switch -> PCs, what I want to do is: Router -> Server -> Switch -> PCs

Quote :

im all for experimentation but your not experimenting, if you were you would have just tried it yourself and found the answers yourself. you have no idea what your doing and you have no idea what your asking. your just foaming at the mouth trying to sound smart.



I am not asking if it can be done, as it is a straight foward linkup. I have tried this ages ago, and it works fine, I was asking about the security of it, not about number of firewalls needed or route of navigation, I can't understand how you are not able to see the simplicity and actual intention of my initial post

Abit IC7 Max II Adv.- P4E3.0@3.6 - CNPS7000B-CU - i875P - 1024mb dual ddr400 3-2-2-5 - Leadtek 6800 128mb@380/850 - 600W dualfan(buttom/rear) PowerTek Psu - maxtor 4K080H4 & 6Y120P0 - samsung sm-352b

Reply to mopeygoth
jihiggs   12-14-2004 at 12:43:11 AM
- 0 +

ok then buddy, im done.

this is my boomstick!

Reply to jihiggs
mopeygoth   12-14-2004 at 01:01:13 AM
- 0 +

allright man, didn't mean to piss you off though, i just too offence to the last few lines- you know how it's like ;)

Abit IC7 Max II Adv.- P4E3.0@3.6 - CNPS7000B-CU - i875P - 1024mb dual ddr400 3-2-2-5 - Leadtek 6800 128mb@380/850 - 600W dualfan(buttom/rear) PowerTek Psu - maxtor 4K080H4 & 6Y120P0 - samsung sm-352b

Reply to mopeygoth
Dev   12-19-2004 at 12:05:57 AM
- 0 +

I've never used outpost, and don't know how peer guardian works internally, but my guess is that the firewalls interact directly with the TCP/IP stack and will work on a shared or routed connection.

---
I want my epitaph to be: "Moved to /dev/null"

Reply to Dev
mopeygoth   12-19-2004 at 05:44:02 AM
- 0 +

Peerguardian basically stop any ping attacks or flooding. Outpost is a general firewall software, though it's prety hardcore.

So your guess is that it's the same level of security? That would be great

Abit IC7 Max II Adv.- P4E3.0@3.6 - CNPS7000B-CU - i875P - 1024mb dual ddr400 3-2-2-5 - Leadtek 6800 128mb@380/850 - 600W dualfan(buttom/rear) PowerTek Psu - maxtor 4K080H4 & 6Y120P0 - samsung sm-352b

Reply to mopeygoth
Ask the community Add a reply
Tom's Hardware > Forum > General Networking > General Gateways, Routers and Firewalls > firewall and connect through server
Go to:

There are 1267 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.302 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
Related Topics
See all relatives topics
They won a badge
Join us in greeting them