Which Linksys Switch has NAT?

But isn't it true that router slow down my bandwidth? I am only using this on 1 computer.

that link only covers wireless switch/router only. I only work wired router

they have switch, but you said switch won't work
 
No, a router will not slow down your bandwidth. If you want to use Network Address Translation (NAT) to protect your computer(s), you have to have a router or a firewall of some sort.
 
thanks. A few years ago, Cisco tech. support told me their router is not as fast as their firewall. They said the nature of router downsize the bandwidth (thus the speed) of the unit

I think I'll go w/ a cisco PIX, because they are well known to be one of the best. Better than their own Linksys anyway
 
As of today, the pix line is officially end of life.

What exactly are you wishing to use this product for that you cannot accomplish with your current configuration? You mention only having one pc. Is this a college network, a home cable/dsl connection (If so: what model modem? Many include routing features)
 
GlobalFear said:
As of today, the pix line is officially end of life.

What exactly are you wishing to use this product for that you cannot accomplish with your current configuration? You mention only having one pc. Is this a college network, a home cable/dsl connection (If so: what model modem? Many include routing features)
Click to expand...

I only have software firewall, and s/w firewall doesn't do NAT. This is a home based computer, it's a cheap cable modem from motorola, I seriously doubt it c/w NAT.

The reason I picked cisco is that some local co. is upgrading their pix to ASA, so they are getting rid of the PIx really cheap
 
So you go from wanting to NAT on a swtich, to configuring a pix for home use...


Please update this thread when you start setting the pix up, this will be good.
 
the other day, set up a machine for a friend, computer is brand new, never been on the internet. Once connects to the internet, try to update the zone alarm signature, in less than 20 min., got a virus. If the firewall has NAT, this will not happen. The firewall would have take care of it
 
Perhaps I've been behind UTMs and Proxies too long but how does a Windows box auto magically just get a virus?
 
there are bots out there constantly scanning the Internet for open ports and such. if you put an unpatched windows box on the network that isn't being protected by a firewall or something, it can be compromised within 20 minutes or so. i read an article about this a while back where they used XP, MAC, and a Linux distro and tested how long it took each one to get a virus or be compromised. the one windows box literally took like 20 minutes.
 
berky said:
there are bots out there constantly scanning the Internet for open ports and such. if you put an unpatched windows box on the network that isn't being protected by a firewall or something, it can be compromised within 20 minutes or so. i read an article about this a while back where they used XP, MAC, and a Linux distro and tested how long it took each one to get a virus or be compromised. the one windows box literally took like 20 minutes.
Click to expand...

Hmmm, good to know. //glares over at my slipstreamed XP SP3 Disk, and Slipstreamed SP1 Vista disks...//

But back on topic, having a router that is capable of NAT is not a firewall solution, sure you're internal ports are hidden by address translation but it's still vulnerable. If you can get your hands on a PIX, by all means go for it, just remember people spend years mastering CISCO equipment and even more time speciallizing in their defense appliances and this is not going to be an easy install.

Of course this is all assumptions and speculations on your experience, but you might want to read up on some stuff before making that plunge. just my $0.02 of course.
 
First of all, I hope all of those who are thinking of making fun of HH will remember their formative early years in networking.

HH, don't get cisco. It'll cause you more grief than it's worth, especially in this case. Cisco is big in business, but their products...have sharp edges. Without the proper training, you are likely to cut yourself. Hell, even with the proper training you can shoot yourself in the foot, cisco is odd.

I recommend picking up any consumer grade router; I'm a fan of linksys ( wrt54gl. ask for it by name! ), but netgear has some good product.

The upside is that just about everyone here can help you through setting it up and understanding it. There are only a handful of folks that can offer assistance with Cisco ( on these boards ).
 
To reiterate what others have said; A router (read: any good quality consumer level router) will not "slow down" your bandwidth. Also, NAT (Network Address Translation) is not a "firewall", however it often behaves as one by virtue of its operation. SPI (Stateful Packet Inspection), on the other hand, is a firewall technology that is readily available in almost every modern consumer grade firewall appliance out there, which was not the case a few years ago.

If you have your heart set on Cisco then that's fine -- but keep in mind that the words "easy" (or heck, even intermediate) never go side-by-side with the brand Cisco. Configuration is a bear and if we're talking about an older PIX, the odds are very much in your favor that you won't see any performance difference by going with a good quality consumer grade router.

That said, check the sticky Router Recommendations thread for some good ones that might fit your budget along with plenty of commentary on the different routers in the list posted throughout the pages.

The D-Link DGL-4500, DIR-655 and the Linksys WRT600, WRT610 models are quite nice, even for the enthusiast. There are others in the list if that's too high for your budget.

Wish you the best of luck whichever way you go.
 
Thanks for the tip. Have you use PIX before, if so:

1) I never use the PIX 501 before, does it have GUI?

2) If so, how long does it take you to config. the box?

3)and do I have to pay Cisco some sort of ongoing fee to continue to use the unit?

I am reading the manual of the PIX, it looks like it's all text based by inferfacing thru Terminal software and they keep talking about communication to the server, whereas I am only using this on a stand alone PC.
 
d3c1us said:
. If you can get your hands on a PIX, by all means go for it, just remember people spend years mastering CISCO equipment and even more time speciallizing in their defense appliances and this is not going to be an easy install.

Of course this is all assumptions and speculations on your experience, but you might want to read up on some stuff before making that plunge. just my $0.02 of course.
Click to expand...

this is exactly what I am afraid of. Could you fill in the above 3 questions if you have a moment
 
Happy Hopping said:
Thanks for the tip. Have you use PIX before, if so:

1) I never use the PIX 501 before, does it have GUI?

2) If so, how long does it take you to config. the box?

3)and do I have to pay Cisco some sort of ongoing fee to continue to use the unit?

I am reading the manual of the PIX, it looks like it's all text based by inferfacing thru Terminal software and they keep talking about communication to the server, whereas I am only using this on a stand alone PC.
Click to expand...
1) Yes, but you don't want to use it.
2) Variable. For a first timer, it could take a very long time.
3) If you want support, you pay yearly for it. However, as the pix501 is EOL, that may not even be an option

Again, let me restate: I highly recommend against PIX here.
 
Happy Hopping said:
Thanks for the tip. Have you use PIX before, if so:

1) I never use the PIX 501 before, does it have GUI?

2) If so, how long does it take you to config. the box?

3)and do I have to pay Cisco some sort of ongoing fee to continue to use the unit?

I am reading the manual of the PIX, it looks like it's all text based by inferfacing thru Terminal software and they keep talking about communication to the server, whereas I am only using this on a stand alone PC.
Click to expand...

You can use the GUI to configure the PIX, there is a base setup startup wizard thing that will at least get you going on the internets. However, to even use the GUI you will need a computer that is running IE 6 and JRE 1.4. The PIX PDM does not work reliably with IE7 or any Java released after the 1.4.2 updates.

Cisco End-of-Lifed the PIX 501 about a year ago. You CANNOT buy any type of support contract for it.
 
berky said:
there are bots out there constantly scanning the Internet for open ports and such. if you put an unpatched windows box on the network that isn't being protected by a firewall or something, it can be compromised within 20 minutes or so. i read an article about this a while back where they used XP, MAC, and a Linux distro and tested how long it took each one to get a virus or be compromised. the one windows box literally took like 20 minutes.
Click to expand...

Don't forget the Mac took under 5 minutes.
 
Go buy a linksys router...using a pix for what you are trying to do is dumb....stupid dumb.

If you wanna solve the majority of your problems, quit running windows.
 
Jabroni31169 said:
Go buy a linksys router...using a pix for what you are trying to do is dumb....stupid dumb.

If you wanna solve the majority of your problems, quit running windows.
Click to expand...

Wow, way to post some positive feedback and insight.

How will not running windows solve his problem of needing a NAT/SPI firewall solution?? Even running a Linux/Mac OS without a hardware firewall in front of it is dumb . . . stupid dumb.
 
originally, I switch over because the price of a new linksys is the same as the price of the old PIX that some co. is trying to get rid off. But if it is this much trouble, then it's not worth my time

I am reading "Cisco Security Prof. Guide to Secure Intrusion Detection Sys" by Syngress

"Cisco Security specialists guide to PIX firewall" also by Syngress and no doubt the config. is out of my element.

So I am going to get a Linksys instead.

thanks everyone for the head's up
 
You must log in or register to reply here.
Back
Top