Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Router God tutorial

Options

Comments

  • Options
    #2
    bricks
    Registered Users Posts: 443 ✭✭bricks


    http://www.zelow.no/floppyfw/


  • Options
    #3
    Ruaidhri
    Closed Accounts Posts: 1,719 ✭✭✭Ruaidhri


    Dear LORD,have some ppl no shame?and now for some more PIX firewall :))


  • Options
    #4
    Demitri
    Closed Accounts Posts: 13 Demitri


    why not just get down and dirty with standard & extended access-lists on your router, which I asume you have if your going to be putting a moderate amount of money into a small home network. You can pick up a 25** series access router for a few hundred. Hell put a named access list on and you'll be launghing.

    Example:

    access-list 101 deny tcp 172.16.4.0 0.0.0.255 any eq 80
    access-list 101 permit ip any any
    (implicit deny any)
    (access-list 101 deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255)

    interface ethernet 0
    ip access-group 101 out

    this access list will deny the port 80 or internet traffic from that host and permit all other traffic. With a decent knowledge of port numbers (Lists of which are readily available) you can permit or deny anything and everything

    In case you wonder about the source of this it's CCNA, Net+ and mod V CCNP so I have faith in what I've learnt and why fork out for security periphals when the knowledge of how to implement security features is worth so much more. And will get you more money from your Job.

    My tupence.


  • Options
    #5
    The Cigarette Smoking Man
    Closed Accounts Posts: 649 ✭✭✭The Cigarette Smoking Man


    Originally posted by Demitri
    why not just get down and dirty with standard & extended access-lists on your router, which I asume you have if your going to be putting a moderate amount of money into a small home network.

    I've never seen anyone using a PIX for a home network....


  • Options
    #6
    Demitri
    Closed Accounts Posts: 13 Demitri


    The same applies for coporate networks of moderate size, hiring someone to your IT team to manage your networks and troubleshoot any faults should be able to do some router configuration. And it is more cost effective to have some one in your work place able to configure any changes necessary in your access lists than having some one come out to you or talk you through configuration changes over the phone, which it is likely to be the case with periphals.

    Demitri


  • Advertisement
  • Options
    #7
    Bosco
    Closed Accounts Posts: 219 ✭✭Bosco


    Originally posted by Demitri
    And it is more cost effective to have some one in your work place able to configure any changes necessary in your access lists than having some one come out to you or talk you through configuration changes over the phone, which it is likely to be the case with periphals.

    Actually, unless the work place is large enough to keep your networking engineer busy round-the-clock, its much much (much much much much) more cost effective to outsource your network maintainance to a specialist networking company.


Advertisement