Re: jeckyl hyde network

["Ben" <bench () tukati com>]

If you make yourself a linux-based firewall (virtually free - a P90 would be
overkill) then you can have one interface lead to the cable modem, one lead
to your network, and a third lead to the kids network. You're networks are
nicely seperate - your kids might get completely owned and your machines
would still be safe.

The only potential problem is that one of your requirements is that all
machines can access each other. With the setup I described, you place a
firewall between your kids network and your own network. If a firewall isn't
too restrictive, then you should be good. If it is, then prepare to get
owned as soon as your kids do.

----- Original Message -----
From: "Mada Dulate" <madadulate () hotmail com>
To: <security-basics () securityfocus com>
Sent: Wednesday, April 09, 2003 10:42 AM
Subject: jeckyl hyde network


> Hi all,
>
> I have a homenet with 9 computers, mostly for playing and learning, but I
> also run my business on it.  I believe I keep a pretty tight ship, but
> sometimes while I'm in the process of playing, well, you know...
>
> It's never been particularly fun for the kids because of the locking down,
> but I can keep the horde back no more.
>
> I want (need) to set up a couple of computers that are open for the kids
to
> use IM, do what they want with the desk and load crap they want to load.
> Basically they need eveything open so they can learn.
>
> I have some unmanaged hubs, Cisco switches (2900) and flexibility in the
> wiring.  Fly in the ointment is a single cable modem and an 8 port Linksys
> router.
>
> Right now I run 2k and XP with a 4.0 server.  No flavours of *nix.
>
> Oh, yeah, and right now - zero budget.
>
> I like to solicit advice of configurations for isolating the play side
from
> the work side.  Can this be done practically and still have access to the
> cloud from all terminals?
>
> Any help for a relative newbie would be greatly appreciated!
>
> Thanks!
>
> Mada
>
> _________________________________________________________________
> Help STOP SPAM with the new MSN 8 and get 2 months FREE*
> http://join.msn.com/?page=features/junkmail
>
>
> -------------------------------------------------------------------
> Is SPAM over-loading your e-mail server, disk space or bandwidth?
> SurfControl E-Mail Filter is flexible, intelligent and policy-driven
> protection.
> http://www.securityfocus.com/SurfControl-security-basics2
> Download your free fully functional trial, complete with 30-days of free
technical support.
> Stop SPAM before it stops you.
> -------------------------------------------------------------------


-------------------------------------------------------------------
Is SPAM over-loading your e-mail server, disk space or bandwidth?
SurfControl E-Mail Filter is flexible, intelligent and policy-driven
protection.
http://www.securityfocus.com/SurfControl-security-basics2
Download your free fully functional trial, complete with 30-days of free technical support.
Stop SPAM before it stops you.
-------------------------------------------------------------------