![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
Come on dude, anyone with a NAT box(and thats the majority of the internet) is safe from outside attacks. Unless you punch holes in your network to allow for outside services. Posting network diagrams poses NO remote security risks for the most part. Hey now! You forgot about me there budday! Or have you not seen my network, lol
hahaha, yep. But you said that you had the "hookup" so I had to retract my statement. My network has actually changed once again(a bit more overkill obviously) so I will have to post up a diagram eventually. Have a lot of plans. Got another server running esx3i.
Actually, I 100% would. And since we sound like we're getting technical, a NAT box is NOT a firewall. NAT is sufficient for most home users, or users that would post up network diagrams here. period.
heh, have you seen my network? Page 14, half way down. 'Nuff said.
Are you serious? Clearly you have never heard of DSPI firewalls or UTMs for that matter
. UTMs are so common among the users here.Indeed it is interesting, but I think that you are a bit too paranoid. lolI'm not saying it's a big risk, just thought it would be an interesting discussion. It is my job to be paranoid
Im curious, why is it your job to be paranoid? (I know it definitely part of my job).
I have 3 shifts running 24/7, I cant take anything down to fix the nasty wiring.
I couldn't agree more with you that AAA is part of network security, but for the purposes of this original argument its a moot point. You don't use verbiage that people don't understand, you cloud the discussion with buzz words that have no relevance. Lets get back to the original argument, firewalls alone.. weather they are hardware based or software based alone is enough to protect home user assets, the same assets that you argue is a security risk to post up on the internet. Like I stated, I couldn't agree with you more that encryption, authentication(weather it be one or two factor), authorization are an integral part of overall security(not just YOUR network) for the purposes of this argument they are irrelevant.
So let me get this straight, removing all kinds of web related attacks(MiM, strong arm SSL, password phishing, etc, etc) someone can break into a privately addressed assets without any kind of port translations? Lets go one step further, all remote access into the edge device is disabled. Stop clouding the argument with crap.
Wow dude, you definitely know how to shovel bullshit. You educate people on misinformation and cloud the facts. This entire discussion has turned into securing both your internal assets as well as external assets that are not part of your network. I understand security, quite well infact(as its an integral part of my job) but you're not making vaild points to your original argument.
So you have to sit in there when its 68? 
Untangle is a nice UTM though, I run it at home. Considering going back to Astaro Security Gateway software, though, or trying out ClarkConnect again. I like to play around with my firewall at home . . . .Here is a diagram of the whitebox ESXi box I'm putting together.
My next upgrade will be 4GB additional DDR2.
This is the plan I'm now going for, and I'm about half-done building the rack to house the components in our guest bedroom (a.k.a. computer room). The PS3, when I get it in April or May, will be in our basement to act as an HTPC and gaming console for our big-screen TV. The rest of the computers are upstairs. Zeus is my laptop, Hera is my gaming computer/family computer, and Poseidon is my sister's computer.
Well, after coming to some realizations about my plans, I changed them
I did this around a year ago for a client. 62 hours of work. Complete, studs up job. Wall was bare, ran all the phone/network/alarm/ ect wiring. Then made it all work
http://img186.imageshack.us/img186/6078/071807123401ta4.jpg
