[clug] ADSL Routers

Alex Satrapa grail at goldweb.com.au
Mon Apr 21 12:31:02 EST 2003


On Monday, April 21, 2003, at 11:47 , Burn Alting wrote:

> It's clear that two DIFFERENT firewalls in series is a good thing.

Not if one of the firewalls has a known vulnerability, and isn't being 
repaired.

If you really need two firewalls for a DMZ, fork out the cash for a 
second firewall machine.

For a home network, one firewall doing NAT should be more than 
adequate - your biggest risk will be ping flooding, which is a financial 
risk rather than a security risk.



More information about the linux mailing list