Re: Linksys 4-port Router NAT/Firewall

[Jonathan Rickman <jonathan () XCORPS NET>]

There's absolutely no reason not to run ZA on your Windows boxen behind
the firewall. It's free...stops trojans dead in their tracks(something the
fw can't do)...and it doesn't really impact system performance. As far as
the security of the Linksys router, It's pretty tight from what I
have seen. Careful with the reset button though. On the unit I tested, it
reset the password to the default.  If you're really paranoid, leave the
internal IP of the router out of your ZA "trusted" local hosts config.
Treat it as an Internet host. Of course, posting the question to this
particular list may have the effect of placing the Linksys product in the
crosshairs of some pretty capable developers...

---------------------
Jonathan Rickman
X-Corps Security
http://www.xcorps.net


On Thu, 24 Aug 2000, Litscher, Steven wrote:

> Greetings All,
>
> I recently purchased a Linksys 4-port router (BEFSR41) for use with my
> soon-to-be-growing home network (it's only 2 pc's right now).  I'm extremely
> new to networking, so please forgive me if these questions are too
> elementary...
>
> 1) Is the firewall that comes with the router safe enough that I don't have
> to continue using software firewalls (ZoneAlarm)?
> 2) I went to grc.com and received "Stealth" status with just the router
> running.  However, grc doesn't probe high port numbers.  Is the router
> effective at blocking high port numbers like B02K, Sub-7, etc?
> 3) Does anyone have any experience with this router and have some tips they
> could share?
> 4) Does anyone have any links to some good sites (other than grc and
> robertgrahm) for tips on firewall configuration?
>
> I've upgraded the firmware and performed the tips that Linksys recommends
> for securing the router (changed admin password, etc).
>
> I appreciate your help and enjoy the topics on this list.  Great job,
> SecurityFocus!
>
> Best wishes,
> Steve