Getting Cable 2/1/02, need security advice...

[Stanley_Kubrick]

So I finally broke down, now that the AT&T smoke has cleared and the beloved cable guy comes next friday. I plan on using the lynksys BEFSR41 with Norton Personal Firewall (same config we use here), but I would like more info on how to configure my security plan. Where am I most vulnerable, does Norton suck, what exactly is a port, and how do I make it safe.
Those of you with links, advice, experience, etc feel free to offer it up. I don't know enough about this to feel comfortable with an always-on connection in my home, and I only have a week and a half to become an expert.

Thanks team for your help.

[Cygnus]

I have that same router and currently I have no firewall up at all. I have all the ports closed except a couple that need to be triggered.

for the port definition this link might help.

<a href="http://searchnetworking.techtarget.com/sDefinition/0,,sid7_gci212807,00.html" target="_blank">http://searchnetworking.techtarget.com/sDefinition/0,,sid7_gci212807,00.html</a>
There is also some description help in the setup of your router. You have to go under advanced, and then forwarding tabs.


Norton does not suck, but from my own experience I cant see any reason you will need it. Ive had my network up for a year with no break-ins. I was useing Zone Alarm pro as a firewall but took it down soon after I installed the router since it has its own built in hardware firewall.

If I can think of anything that might give you trouble its trying to get past the security yourself. I am still puzzeled by some of my programs that wont get through the router. ICQ for instance, will not do a file transfer for me even with all the ports forwarded that they suggest.

Im stil learning a little bit on it myself but if I missed anything or can answer another question I will. Im trying to set up a VPN with it right now which is getting me a bit.

[Cygnus]

Oh, and BTW congrats on the high speed conn. I hope you enjoy it as much as I have!

[NeuromancerIV]

well these sites have always answered my basic questions about security and most issues regarding cable/dsl modems.
<a href="http://cable-dsl.home.att.net/" target="_blank">Cable/DSL Modem Security Tips and Tweaking</a>

<a href="http://www.cablemodemhelp.com/" target="_blank">More of the Same</a>

Be sure to check out reviews, and reccomended patches of Nortons *and everyones* SW firewall at <a href="http://www.grc.com" target="_blank">Steve Gibson's</a>homepage. Please DO take everything Steve says with a grain of salt....he is a tad of an alarmist

A TCP/IP port is a connection spot for the way a client app specifies a server app on comps in a ntwk. **yes this is a dreadful oversimplification** Higher level apps use the so called "common ports" often ones "hackerz" attempt to take over. Anyhoo when a service starts, it binds to its designated port number *when may br dynamic or user defined*. If any client prog intends to use that server, it also has to bind to the port number of the server service.
SO if you are gonna run server services, HotLine, FTP, HTTP, etc try to use non standard port numbers...try to keep the bad guys from noticing you quickly!

have fun with it!!

[SubZero]

Tips:

- Don't need Norton Firewall w/ Linksys Router
- Only forward ports if necessary
- If you choose to expose 1 machine, then install Norton Firewall

[Stanley_Kubrick]

Thanks for the info and links, dudes