Subj : Off-topic a bit To : Sean Dennis From : Peter Knapper Date : Mon May 16 2005 08:26 am Hi Sean, PK> However if you use a decent broadband Router you will find that OS/2 PK> will be quite happy with whatever you get. There, I kept it on PK> topic..........;-) SD> Hee! I'm actually thinking about installing Injoy SD> Firewall as the main router for my system. I will never connect am end user machine directly to the Internet, I will ALWAYS use an external Firewal laplpiance of some sort. Injoy Firewall has one MAJOR weakness, it relies on the user not doing anything stupid on that machine for its complete security! Use a "professional" tool for the job, such as a broadband Router with built in Firewall S/W. No, a Router wont stop spam or a virus, but it helps ensure that a suer will not open the door without knowing it... SD> I've gone 100% OS/2 (I'm no longer running Windows for myself SD> personally), so either this box will be the router or SD> I'll go get a decent 8-port router or something. Get a decent Router, it is by far the best solution. Let it sort out the connection sharing issues and provides a point for you to hook in your own home LAN security. SD> My wife wants wireless as she's buying a new Macintosh SD> laptop for school, so I guess I'll be slapping a WAP on SD> the router. I wired MAC should not be a problem... but... SD> I personally don't want my machines on wireless (save SD> for my laptop) as I have things going across the LAN SD> that I don't want to be observed except for the people intended. ;) Wireless is frequently fatal, its like running a cable from your Home LAN Hub/Switch to every house in your neighbourhood. If you live in the country 50 miles from your nearest neighbour then you are slightly better off than everyone else, but it is essential to be aware that WiFi has ZERO complete security systems incorporated, ALL require external 3rd Party S/W to complete the security picture. The recent 802.1x methodology looks like it has one of the better schemes for locking down a WiFi environment, but that still requires external devices to complete the security picture. The othe way of handling this is to ensure all WiFi devices that you wish to use your Wireless LAN MUST, use VPN S/W to gain access. Currently this is the only "Generic" method I would even think of using. The catch there is that the VPN does not stop someone from using your WiFi AP itself, it just limits them getting at what its connected to... Cheers.................pk. --- Maximus/2 3.01 * Origin: Another Good Point About OS/2 (3:772/1.10) .