PPRuNe Forums - View Single Post - DHCP (techies only)
Thread: DHCP (techies only)
View Single Post
Old 16th December 2003 | 05:24
  #14 (permalink)  
RomeoTangoFoxtrotMike
20 Anniversary
 
Joined: Mar 2002
Posts: 448
Likes: 0
From: London, UK
Thanks RomeoTango...

You're welcome

Now a question - according to one source if you have File and Print Sharing bound to TCP/IP on the same subnet that also connects to the Internet that means that any one can browse your shares from the outside - seems logical to my amateur brain - M$ themselves advise against such a setup as insecure. But if you unbind F&PS from TCP/IP then you can't browse your local network.

That would depend on your firewall: the point of a firewall is to protect your network services from outside intrusion or to allow you to set your desired policy for what servers and systems are visible and from where.

Binding F&PS to IPX/SPX may well "work" in the sense that IPX/SPX isn't routable across the internet, but it really shouldn't be necessary to indulge in "hacks" like that to get you're security right -- that's what the firewall is for

I'm stating to realise that networking is horribly complicated.....not sure that I'm smart enough to fathom all it's mysteries

It's only horribly complicated the way Microsoft choose to bog it up...

Even Windows native Internet Connection Sharing can be tricky if it doesn't work first time (as I know to my cost in the past). I promise I'll take my questions on the more abstruse aspects of networking to a more approprite Forum in future!

WCS is a pile of Microsoft tried to invent their own way of doing things and it sucked; big time. They were very belated converts to the benefits of IP.
Stick to software that has always been able to do it properly and life will be a lot easier

Finally, thanks RTFM for explaining about broadcasts not crossing routed-network boundaries - silly of me not to have realised that.

Anytime

PS: I think FreeSCO is very much worth having a look at - it really is extremely clever. How they manage to pack so much functionality into a boot stiffy is quite amazing.

Am going to have play with it over Xmas -- have been an advocate of www.smoothwall.org for some time.

PPS: Do I still need Zone Alarm if FreeSCO has it's own firewall?

There is a very valid point of view which says "defence in depth", i.e. don't reply on a single tool/weapon to protect you. So to that extent, yes. However, I've never been convinced about the merits of trying to "do" security on top off general purpose operating systems -- too easy for a flaw in the underlying OS to invlidate your security software. Coupled with the problems many people seem to report in using Zone Alarm, my personal view would be to learn how to use your dedicated firewall first (you can always come here for help and advice), and see how that does for you. On the Windows front, I've had good results with www.tinysoftware.com in the past.

HTH,

RTFM
RomeoTangoFoxtrotMike is offline