Serious question

I was thinking in my head

Modem -> HW Firewall -> laptop

Would that work? I have no idea

yea that should work.

Does the hardware firewall have an ethernet port? Also how would i now if the hardware firewall is protecting me?

>6Gbps

If you use VLANs you can run pfSense with one NIC.

mmhm, just prefer to do it with multiple nics because im fat and lazy

>No enterprise network uses wifi.
You are in for a rude awakening

anyone?

Someone make a before Sup Forums and after Sup Forums with this photo

Where do you plug in your wifi cable without a router?

>wifi cable
go back to Sup Forums

wi-fi is a broadcast technology, so it's inherently less secure as anyone in the vicinity can get the packets. encryption (particularly WPA2) mitigates this. ethernet is point-to-point, so tapping is prettyhard. both are vulnerable to compromised endpoints.
electricity over a wire will often be faster than radio waves. both have different standards and speeds, and depending which ones you're comparing, you'll get different results, but usually wired standard of the same era is faster.

Wired will always trump Wi-Fi in speed and in terms of signal integrity. Use a good firewall and don't keep ports open unless you need them. If you let others login to your lan/server restrict that access to a single dedicated account for that purpose. Keep that account locked down with Read only permissions and restrict access to public folders only. So if say that account gets compromised whoever logs in can't do any damage/see shit that's personal (such as your financial data)

answer this please

>encryption (particularly WPA2) mitigates this.
lies!
unless your password is like 20-30 chars long
and even then give me a gtx1080 ill have it cracked in under a week maybe a day.
not to mention any _real_ bad people
could crack it in minutes with a supercomputer or botnet...

>wifi cable

THIS
wifi is not a secure protocall
go look up 12 year olds cracking mommys wifi with kali linux on youtube

Your weakest link in a home setup is your Internet speed. 100 Mbit or 1GB, if your internet is only 10 Meg then it don't really matter none. Hell 802.11B (11Meg) or 10 meg (10 base t) would be ok if you were just doing internet access.

the router (a gateway really, but it also serves as a router since you can use it for home networking) just converts the incoming packets from one interface (fiber-optics, DSL, cable, T1, whatever) into another (ethernet or wi-fi signals).
a firewall is just a set of rules that allows, blocks, or drops packets (in or out). so the "hardware firewall" is just that set of rules embedded into the router's firmware. you can usually access them through your router's web page (something like 192.168.1.1 you type in your web browser's url bar; to find the IP address, type ipconfig at the command prompt. 8 times out of 10 if you're on a home network it's the IP address of the default gateway)

>wifi cable

>without a router
you could just disable wifi - or you could go routerless though you wouldn't have your router's firewall

So a hw firewall, is basically a router without wifi?

Well there's online tools that scan your IP and it tells you what ports you got open. Then you could always check your Event logs in windows to see if any failed login attempts. Most home routers buried in the web gui have a list of all connected devices, check that periodically to see if anything don't belong.

had to google this

I'm surprised they made this much progress. I remember the days (about 2012?) when it was thought a van parked outside your house would take 24,000 years to break WPA2...

I've stuck to ethernet (even if that means running cables 50 feet long) and I don't regret it (though that has left me behind in my knowledge of wireless)

more like your router also implements a firewall
where as the hwfw does only this and maybe dchp if you get a nice one

Windows Firewall does a good job, you can configure it to allow/block shit on wide range of ports. Be careful though cause some ports have to be open for proper operation of windows services.

if you only have 1 computer its effectively identical
your router does more for your home network
or at least more than your typical hwfw
tho desu i use an old pc with a few networking cards instead
linux iptables is really the king of firewalls once you learn it

So normies love wifi to death and use ISP's routers?

Am i the only faggot thats gonna use this method?

Modem -> HW Firewall -> laptop

I'm meming in a shit thread. So what?

you have the concept wrong. firewall is just software (or firmware) that has rules for packet filtering (allow, block, or drop).
a router just routes packets (reads the destination, looks up the routing table, then sends it along the correct port/interface to the next "hop" (another router, or computer))

the residential box you have they call a router usually has both features built-in. it has nothing to do with what interfaces it supports (fiber, ethernet, wifi, T1, DSL, or whatever)

tl;dr
no to your question
firewall capability can be standalone (software or industrial hardware firewall), or it can be built-in a router (common in home gateways)
a router with wi-fi may or may not have firewall capabilities built-in (most do anyway), but it has nothing to do with whether it had wi-fi or not

bitch this is a free software board. get your ass back to Sup Forums, /r9k/ or pol

yw
but yeah copper all the way

>iptables
What would i evsn put inside the config..I don't understand iptables at all

its an odd setup for sure
if youre not too serious you can just NOT use the wifi on your router
you dont even have to disable it most routers that youd actually buy
[not the garbage given to you by your isp]
because you can segregate the networks
turn off wifi to game and do important things and unplug and wifi on to bs on Sup Forums...

even*

you would litterally have to change it by hand for every service you wanted to use if you wanted to be super tight anus secure
but honestly its easy to learn starting out with ufw
you can iptables -I to put rules before ufw 1 by 1 of theres no good way to enter them in ufw
but if you want to learn iptables for real read the man pages and the arch wiki

I have a really weird question for you (don't be offended)
do you put your hw firewall in the DMZ to have finer control of the incoming packets? (in case the ISP's gateway decides to fuck with them before they get to you)

>arch wiki
arch wiki is shit and vague. Im gonna look at the debian or gentoo wiki

modem != gateway
gateway = modem + router

I laughed hard

honestly i learned from debian but if you thought the archwiki was vague boy you better skip right to the man pages...

wiki.debian.org/iptables

i'll read it later

read it now itll take all of 5 mins

I've hated the use of the word modem

historically it meant modulator-demodulator, which is what happens when you have the analog dial-up phone signal come in and digitized.

this does not happen when you have things like DSL since the signal's already digital. (DSL modem? DSL router? DSL gateway?)

I could give the same rant about cable (which ironically can be analog OR digital) or fiber.

also
kb.intermedia.net/article/3187

not contesting what you're claiming, since I don't know what device you use, but that's the technically correct terminology.

>its an odd setup for sure

OP here, i'll just do

Modem -> router(openwrt)(disabled wifi) -> laptop

>Pretending

uh, never,ever put anything important in the so called "DMZ" You pretty much expose that device to the world saying "please attack me" But for I guess you could like some user mentioned segregate the lan real easy like just get two consumer routers. Plug a Ethernet cable from router 1 into router 2's WAN port. Have all internet only clients connect to router 2's network. The downside is that clients on Router 1 can't access/see clients on Router 2 and the reverse is true as well.

wat

>No enterprise network uses wifi.
Let me know when you actually get a job in IT

Depend on the router for security and how long is your cable because more long It is the more you lost

You guys are new.

Is that Flume?