I have been planning my wiring for some time (see Planning my Panel and Wiring), and have been delayed due to the birth of my second child and several other events. however, i am now back on it and have a question relating to Network Topology...
My current plan is to have my cable modem in the panel with the main feed into that modem for providing broadband access. I have been trying to figure out what to put after that and in what order. Specifically, I am thinking about a dedicated firewall. I do plan to get a WHS up later in the year and want to be able to access it via the broadband connection, but want to protect the rest of my network from intrusion.
My original plan was to just utilize the firewall applications in use on the various running on my home network, but I now think the distributed approach can lead to failures. What I am considering is this:
I have a no-longer-used Linksys WRT54GS that I would flash with DD-WRT (which currently works beautifully on my WRT-350N), turn off its wireless capabilities since it will be in the panel, and activate the firewall capabilities using iptables (NetFilter iptables) and Firewall Builder (fwbuilder.org) This device would then be placed immediately behind my cable modem in the topology, and then my gigabit ethernet switch would follow that. I would continue to use my WRT-350N for wireless access in my home office, but with gigabit ethernet throughout the house, the need for wireless becomes less necessary.
From what I have been able to read on the Internet, this seems like a plausible option... however, i was curious what other cocooners are doing in this regard. I am not married to this approach and would like some feedback.
Your thoughts are appreciated... -_-
-Randy
My current plan is to have my cable modem in the panel with the main feed into that modem for providing broadband access. I have been trying to figure out what to put after that and in what order. Specifically, I am thinking about a dedicated firewall. I do plan to get a WHS up later in the year and want to be able to access it via the broadband connection, but want to protect the rest of my network from intrusion.
My original plan was to just utilize the firewall applications in use on the various running on my home network, but I now think the distributed approach can lead to failures. What I am considering is this:
I have a no-longer-used Linksys WRT54GS that I would flash with DD-WRT (which currently works beautifully on my WRT-350N), turn off its wireless capabilities since it will be in the panel, and activate the firewall capabilities using iptables (NetFilter iptables) and Firewall Builder (fwbuilder.org) This device would then be placed immediately behind my cable modem in the topology, and then my gigabit ethernet switch would follow that. I would continue to use my WRT-350N for wireless access in my home office, but with gigabit ethernet throughout the house, the need for wireless becomes less necessary.
From what I have been able to read on the Internet, this seems like a plausible option... however, i was curious what other cocooners are doing in this regard. I am not married to this approach and would like some feedback.
Your thoughts are appreciated... -_-
-Randy