The macosxhints Forums
Page 3 of 3 12 3
Show 100 post(s) from this thread on one page

The macosxhints Forums (http://hintsforums.macworld.com/index.php)
-   Networking (http://hintsforums.macworld.com/forumdisplay.php?f=14)
-   -   Adding a second ethernet port to Mac mini (http://hintsforums.macworld.com/showthread.php?t=34099)

nuditarian 05-21-2005 04:21 AM
Quote:
Originally Posted by fdan4817
my boss has a terrible fear of the server getting corrupted by viruses (after all, it is Windows). Thus, the server is not connected to the internet, at least not directly. At least, I don't think it is.

Additionally, the outside IT guy that does all of our network setups seems to have a lot of theoretical knowledge (MS certified, etc.) but seems to lack practical knowledge.
If this is actually the case, 2 nics per workstation with one internal and one external. then your outside IT guy is a moron. The sheer waste on complexity of design of dual homed machines would warrant a firing squad, not to mention that unless the 'Internet' network connection was well firewalled these dual homed machines are going to be the source of the virii and if you've got a decent firewall then you don't really need to be dual homed(machines protected). Even if you were taking a security/confidentiality angle, the dual homed machines could all route traffic, virii and sensitive data and all, between the private and public networks.

I can hear it now, "I've got the server behind a firewall of multi-tiered Windows XP desktops."

That's the goofiest thing I've heard in quite a while.

cwtnospam 05-21-2005 09:41 AM
Quote:
Originally Posted by chadpengar
I want to front a large disk array running with FreeBSD using nfs to a bunch of mac minis and use the minis for IMAP/POP servers (using maildir on the nfs mounted volumes) and MTAs (mx hosts). I want one ethernet connection for the internet and one for the nfs connection which is on a private network.
Quote:
Originally Posted by nuditarian
Even if you were taking a security/confidentiality angle, the dual homed machines could all route traffic, virii and sensitive data and all, between the private and public networks.
Nuditarian is right. Separate ethernet ports will provide little to no security advantage. If you take one computer on the private network and add a second port to connect it to the web, that computer can easily act as a bridge between the two, so your private network is no longer as private as if you just used a router with port forwarding turned on. Even then, if the internet connected PC got infected with a virus (no known Mac viruses exist) then it could pass it on to others on the network.

Also, any extra bandwith provided by a second port will go unused since the Minis hard drive will not keep up.

There's been a lot of discussion about this, but I have yet to see one good reason to add a second ethernet port. ;)


All times are GMT -5. The time now is 09:37 PM.
Page 3 of 3 12 3
Show 100 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
Site design © IDG Consumer & SMB; individuals retain copyright of their postings
but consent to the possible use of their material in other areas of IDG Consumer & SMB.