So I've got about 4 computer at home with a random/generic hub connected to a DSL modem. For easier management purposes, I've been thinking about either buying a router/firewall like a Linksys, Dlink , etc. Another alternative for me is to throw Linux on one of the boxes and turn that into a firewall. Anybody have experience with either choice?

For home solutions, a Linksys/high quality DLink will work just fine. I use a Linksys and have never had any security issues.

But if you already have all four computers connected to the Internet, then you already have a router. And if you already have a router, chances are you already have a firewall built into it.

For home solutions, a Linksys/high quality DLink will work just fine. I use a Linksys and have never had any security issues.

But if you already have all four computers connected to the Internet, then you already have a router. And if you already have a router, chances are you already have a firewall built into it.Nah, my DSL box isn't that advanced, not to mention 4 years old. I got it on a PacBell deal, so there's no way they'd hand out equipment like that. My PCs connect to it through a dumb hub.

Is a software firewall completely out of the question? I've been using Zone Alarm with no problems & it's free.

Zone Labs (http://www.zonelabs.com/store/content/home.jsp)

Zone's a great firewall. Each pc has it. I'm intending to make a couple of them as servers and network them together. I realize I should've mentioned I've only got a couple of IP addresses so I can't have 'em all on at the same time without conflicts.

Nah, my DSL box isn't that advanced, not to mention 4 years old. I got it on a PacBell deal, so there's no way they'd hand out equipment like that. My PCs connect to it through a dumb hub.
That's what I'm saying, though.

You can't do that with a hub. Unless your DSL modem has some routing capabilities, then you are not using a hub.

The way networking works, is if you're sending information intended for the Internet, then you need an actual device that will look at the IP address in the packet of information, and be able to decide whether that information stays in the local network, or goes out to the larger network. That is a router. Hubs can't do that, as they work only on the physical layer of the OSI model (meaning they take information off one segment of cable, and send it out to every other segment of cable).

And if your DSL modem has routing capabilities, then its using NAT, and it could possibly have firewall protection. Check this site (https://www.grc.com/x/ne.dll?bh0bkyd2), just to see.

I understand. I'll check w/ a buddy of mine from Alcatel and see precisely what these modems can do as the docs I've got don't say much.

Never believe the freakin Internet

I just noticed you said you have multiple IP addresses.

You have more than one public (ie can be seen on the Internet) IP addresses, and that is how you have (some of) them connecting at the same time?

That's a different case alltogether, if that's the case. If you have multiple Internet IP addresses, then you're likely paying extra for each. The ISPs that I've seen that still offer that sort of service usually charge a fair price (Road Runner, I believe charges $15/mo per IP). You'll definitely want to get a router and put all of those networks on the same LAN.

You'll have the added benefit of the security barrier being in one location, and not having to check all four PCs for intrusion. You'll be able to get rid of the extra fees of extra public IP addresses. NAT, or Network Address Translation, basically lets you use one public IP address for as many computers as you want on the inside of the router. And if you use outgoing services (such as a personal web or FTP server), then you can still configure the router to let those services through the router using Port Forwarding.

Precisely. While I'm getting charged a decent price, $10/mo, I wouldn't mind using one and networking the rest w/ internal DHCP. According to some research I've found, the old SPeedtouch home models don't have router capabilities. Its the pro models that have the routing capabilites. THis is one reason why I'm leaning towards a Linux based router because I know I can do what I want with iptables. Or I could go with a Linksys/Dlink solution without the fun/frustration.

I'm still going to check with a friend of mine who knows these Speedtouch modems and see if there's a hack for the home models.

Honestly, at this point, I wouldn't bother with dealing with the modem. Just get the router.

I toyed many times over the idea of dedicating a machine as a router (I've got a couple sub 100MHz Pentiums lying about). In the end, I decided that I preferred convenience over trying to toy with Linux and netfilter/iptables. Heck, getting a hardware router is even easier than setting up SmoothWall.

I just like it because its one device to troubleshoot. Its got switched LAN ports, routing capabilities (and all the security that comes with that), and its also the WiFi AP for the rest of the house. And I've had more difficulty installing software than this piece of hardware.

My friend pretty much said the same thing. He said the Speedtouch home models weren't really worth upgrading (considering its 4 years old). Thanks for your help.