Originally posted by: RedSquirrel
Originally posted by: Nothinman
Use DMZ only when you are testing new configurations, applications etc.
That's the worst time to use a "DMZ" on a SOHO router, you should only even consider putting a machine in one after you're 100% sure that it's setup properly and secure.
If you want to test in a non secure, seperate environment, that's fine you just have to know what is happening.
Basically it's like plugging that machine right into the modem. I've never had a use for it myself but I could see it come handy, just don't put an actual production machine on there!
But if you have a test box you are ready to reformat at any time then you could put it on the dmz - ex: test security on a setup or something.
One thing I'm unsure of is if the machine on DMZ has access to the rest of the network. I've never actually done this before. If it does have access to rest of the network then yeah, DO NOT use that feature. You are better off getting a switch or hub plugging it into your modem, plugging your router on one port and the PC you want wide open, to the other port.
Also port scanning is basically a program that tries to connect to each port 1 by 1 then displays which ports are opened. Some are more advanced then that, but that's basically what they do. I had fun with those when I was a kid... back in win98 days, good ol port 139 scans. It's scary how many people do not know anything about basic security.