Welcome to WebmasterWorld Guest from 54.224.121.67

Forum Moderators: bakedjake

Message Too Old, No Replies

Linux firewall + router

Redundant?

     
3:16 am on Aug 27, 2006 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Sept 28, 2001
posts:779
votes: 0


Hi all,

Since I've got yet another old pc kicking around, I was thinking about using one of the many linux firewall installs and connecting it to my router, to which the other three pc's I have connect to.

My question is if it's worth it - Would a dedicated linux firewall provide any extra security? Would it slow down my overall net connection? I'm currently using a linksys router and haven't had any trouble.

I just figure it'd be a way to put the old pc to use and maybe add a layer of security.

5:19 pm on Aug 27, 2006 (gmt 0)

Senior Member

WebmasterWorld Senior Member jtara is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Nov 26, 2005
posts:3041
votes: 0


I don't see any reason to add a second firewall. You already have one.

Are you unhappy with the firewalling features on your router? Certainly, Linux gives you a wide range of firewall solutions to choose from in that case...

10:53 pm on Aug 28, 2006 (gmt 0)

Senior Member

WebmasterWorld Senior Member wheel is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Feb 11, 2003
posts:5072
votes: 12


Linux firewalls and routers are not for the faint of heart. A hardware router/firewall like what you've got, if set up correctly should provide 'reasonable' protection.
10:45 pm on Sept 1, 2006 (gmt 0)

Preferred Member

10+ Year Member

joined:Jan 7, 2003
posts:505
votes: 0


You wouldn't want to use both firewalls, you'd use one or the other.. so if you used an old PC to build a firewall, it should replace your Linksys box, not be used with it. The main advantage of doing this is that you have many more options where the Linksys box may otherwise limit you. For instance, I think Linksys only gives you about 10 port-forward entries and you're stuck. A custom firewall as you describe would allow literally hundreds.

A hardware router/firewall like what you've got, if set up correctly should provide 'reasonable' protection.

The distinction between a hardware and software firewall is just perception. A "hardware" firewall like the Linksys box is nothing more than a computer running software that performs the function of a firewall. The main distinction that people use to differentiate is that a software firewall is loaded on to a PC that has other functions (i.e. loading NIS on to a desktop system) and a hardware firewall is a computer (PC or otherwise) whose main or only function is to be a firewall. In this case, a PC loaded with Linux setup as a firewall would be considered a hardware firewall (and almost indistinguishable from the Linksys firewall, which depending on the revision is probably also running Linux).