Solved

Internet Connection Sharing on a DSL Device Network

Posted on 2006-11-11
6
163 Views
Last Modified: 2012-06-27
Hi..

I have a network with 3 computers, 2000 Pro, XP-Pro, and Win2k3. They are all connected to an ADSL device and can access the Internet normally (and see each other). I want to allow only 2000 pro to connect to the Internet and then use Internet connection sharing on this computer for the other two (because it has firewall). Is it possible? Can anybody help please?
0
Comment
Question by:xpert_land
  • 3
  • 3
6 Comments
 
LVL 18

Expert Comment

by:carl_legere
ID: 17923389
this is less efficent than what you have now.  If you are currently missing the firewall you desire because the ADSL device does not do it, then get a linksys or other inexpensive firewall router.

If your PC's are getting IP addresses like 192.168.1.x then you are already have basic firewall protection.

To put this another way, using your ADSL router for internet connection sharing is far more efficient than using windows internet connection sharing.
0
 

Author Comment

by:xpert_land
ID: 17924239
Thank you very much

Yes my PC's do get the ip addresses 192.168.1.x meaning that I have a  basic firewall protection as you say, but is this "basic" protection enough on the Internet?
0
 
LVL 18

Accepted Solution

by:
carl_legere earned 50 total points
ID: 17924856
You have a NAT network address translation firewall.  It cushions you from having PC's directly connected to the net, where I've seen unpatched XP get
exploited in 10 minutes or less.

Your protection level is one where you are invisible to computers trolling the internet looking for computers that have known exploiots.  You have what any other basic small office / home office has with your DSL router if they use a netgear/linksys type box.

It is my opinion that it is sufficient as long as your computers have hard passwords on thier shared files.
0
Free camera licenses with purchase of My Cloud NAS

Milestone Arcus software is compatible with thousands of industry-leading cameras for added flexibility. Upon installation on your My Cloud NAS, you will receive two (2) camera licenses already enabled in the software. And for a limited time, get additional camera licenses FREE.

 

Author Comment

by:xpert_land
ID: 17925357
Just for my information, what level is there more than being invisible?
0
 
LVL 18

Expert Comment

by:carl_legere
ID: 17925499
just scratching the surface of what I know about firewalls, and although I have been programming Cisco and inexpensive firewalls for about 8 years, the fact remains that the technology moves allong too quickly for me to call myself an expert.

The first major category of a firewall is one that prevents unsolocited connections from the outside in.  you have this now
The second major category is one that prevents some or all traffic out based on policies.  you do not have this now, you can get it easily by installing ZoneAlarm or similar software on each PC.  This software must be trained carefully and any mistakes made during the training will cause holes in your protection.
The third major category is a firewall that only allows traffic from the outside in if it beleives that it is a server outside answering your question, this is called SPI, stateful packet inspection.  You may have this in your firewall
The fourth major category is one that carefully analizes traffic includes intrusion protection and other policies that you can program in.  This is for serious businesses who have the resources to buy the right device, pay a good programmer, and maintain this security system.

The more you spend the more of all these protections you get combined and integrated together.  Less expensive systems are usually much easier to configure.  For example, if you have a Linksys BEFSR41 basic home router and you program port TCP 25 to be forwarded from the WAN side to the LAN side, the firewall automatically opens up port TCP 25 to the world without any more configuring.
If you wished to do this with Cisco, you would have one line for the forwarding of port 25 and one or more lines in your access list telling the router in detail how to program the firewall to allow the connection through.

For small office and home office scenarios, #1 and #2 combined
Larger more secure businesses or ones with complicated remote access and VPN requirements may need more protection, several firewalls, etc.
0
 

Author Comment

by:xpert_land
ID: 17925576
Great stuff! That's why I love EE! Where else could I learn from the experts?!

So I do have enough protection. I will also install zonealarm as you advised.

Thank you very much for your help.

Cheers
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
Have you ever set up your wireless router at home or in the office to find that you little pop-up bubble in the bottom right-hand corner of Windows read "IP Conflict - One of more computers on the network have been assigned the following IP address"…
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now