From owner-freebsd-isp Sat Aug 21 8:55:19 1999 Delivered-To: freebsd-isp@freebsd.org Received: from ns3.zoomnet.net (ns3.zoomnet.net [206.230.102.14]) by hub.freebsd.org (Postfix) with ESMTP id A2D5A14F10 for ; Sat, 21 Aug 1999 08:55:17 -0700 (PDT) (envelope-from cygone@zoomnet.net) Received: from windows (cygone.zoomnet.net [208.32.49.7]) by ns3.zoomnet.net (8.9.1/8.9.1) with SMTP id LAA03816 for ; Sat, 21 Aug 1999 11:55:15 -0400 (EDT) Message-ID: <002501beebed$2a4e3ea0$0200000a@windows.cygone.com> From: "Mitch Vincent" To: Subject: Re: multiple machines in the same network Date: Sat, 21 Aug 1999 11:52:25 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3110.1 X-Mimeole: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >> We are an ISP and we want to let our customers to put their own hardware >> into our network. But the thing we are concerned about is security of >> course. How can we protect our system from customers' machines? What do you mean protect yourself? From things like sniffing passwords, or things like DoS attacks? Preventing the sniffing of your passwords is fairly easy, just segment your network, get a switch and make sure their machine is on a different port than any of yours. Preventing DoS attacks isn't as simple, look into firewalling at the router.. - Mitch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message