Web lists-archives.com

Re: Why does Debian allow all incoming traffic by default




Reco wrote:
> 	Hi.
>
> On Fri, Sep 21, 2018 at 09:59:40PM -0000, Dan Purgert wrote:
>> Reco wrote:
>> [...]
>> >> So this is why a wise guy buys an industrial pc for 200 US or wrt capable
>> >> router for 20-30 US installs linux and makes a good firewall then puts it
>> >> between ISP and his own network.
>> >
>> > That's one way of solving it as such measure only covers one's
>> > conventional household needs. Barely - as there's this guest Wi-Fi and
>> > that curious neighbour kid.
>> 
>> You don't firewall between your guest wifi and your trusted stuff?
>
> Personally I went as far as putting household Wi-Fi into distinct VLAN,
> and guest Wi-Fi into another one.
> The question is - can you expect that D-Link/ASUS/TPLink box to do it
> by default?

Actually with newer models that support "guest wifi", yes -- at least
insofar as between guests and "trusted".  Though not so much between the
wired and "trusted" wifi.



-- 
|_|O|_| Registered Linux user #585947
|_|_|O| Github: https://github.com/dpurgert
|O|O|O| PGP: 05CA 9A50 3F2E 1335 4DC5  4AEE 8E11 DDF3 1279 A281