I'm going to summer school <college> soon and I'll be moving into an appartment with three other people.
We have a DSL connection.
Being the person I am, I placed myself in charge of all internet distribution matters. Everyone will have their own computer (4 total)
What I am going to do is set up my server (MS server2k3) in my room with three network adapters.
One NIC will be for the DSL modem
One NIC will be for a crossover cable connection to my workstation
One NIC will link to a switch that the other three client computers can hook into.
The crossover NIC and the Switch NIC will have seperate DHCP scopes. Microsoft Internet Connection Sharing will be used.
THE PROBLEM
The three other client computers are all trashed with spyware and viruses. I could care less about their personal systems and have no intentions of securing them with my own time.
How can I secure my server--from the hell that is going to exist on the switched network--while still providing Internet Connection Sharing to it?
NO other services are needed for that network segment, just internet....IE usable http, https, ftp, mail.
Does MS ICS just map ports....use a single port...or what? Can I config a firewall like black ice to block all traffic besides ICS service traffic?
We have a DSL connection.
Being the person I am, I placed myself in charge of all internet distribution matters. Everyone will have their own computer (4 total)
What I am going to do is set up my server (MS server2k3) in my room with three network adapters.
One NIC will be for the DSL modem
One NIC will be for a crossover cable connection to my workstation
One NIC will link to a switch that the other three client computers can hook into.
The crossover NIC and the Switch NIC will have seperate DHCP scopes. Microsoft Internet Connection Sharing will be used.
THE PROBLEM
The three other client computers are all trashed with spyware and viruses. I could care less about their personal systems and have no intentions of securing them with my own time.
How can I secure my server--from the hell that is going to exist on the switched network--while still providing Internet Connection Sharing to it?
NO other services are needed for that network segment, just internet....IE usable http, https, ftp, mail.
Does MS ICS just map ports....use a single port...or what? Can I config a firewall like black ice to block all traffic besides ICS service traffic?
