ffutures: (Default)
ffutures ([personal profile] ffutures) wrote2007-01-08 06:22 pm
  • Add Memory
  • Share This Entry

Hermione

Stage one of the file server business is accomplished - I've bought the casing and tried it with an expendable drive, and after the usual messing about have it working, albeit not very useful since the drive is only 6gb. Since it's going to be packed with knowledge eventually I'm going to call it Hermione. Once I've checked prices from a few more vendors I'll get a drive - about 300gb is probably what I can afford for now - and put it on line permanently.

What I'm wondering is how I make it accessible from the network computers but protect it from external hacking. But doubtless someone reading this is already saying "is he thick or what?" and eager to tell me what to do...
Flat | Top-Level Comments Only

[identity profile] heliograph.livejournal.com 2007-01-08 07:07 pm (UTC)(link)
Is this for home or work use?

[identity profile] ffutures.livejournal.com 2007-01-08 07:18 pm (UTC)(link)
Home - just a big hard disk in a box that any of the PCs can access.

[identity profile] uk-lemming.livejournal.com 2007-01-08 07:08 pm (UTC)(link)
Provided that there is no specific route to it through your router and you are using a private IP adress you shuold be fine. It will be hidden behind the Routers firewall.

What you will find is that you have at best nothing and at worst one pc that is actually visible from the other side of the router - depending on port-forwarding options on the router.

I have a webserver visible behind my router, on a NTL connection, that can be reached through a website adress, so it is possible to ensure that it is not possible to access any box on your network. You will have to specifically allow acces to what you want.

Securing the Box once you are inside your network (like on wireless) is a whole 'nother kettle of fish....

[identity profile] ffutures.livejournal.com 2007-01-08 07:22 pm (UTC)(link)
OK - what I want at present is to block all access from outside, so it sounds like the default will be OK. Maybe I'll change the IP address for extra security.

The wireless part of the network is encrypted, so shouldn't be too much of a problem. I have no problem with anyone authorised to use the network accessing the files that will be on it - it's only going to be me and possibly one or two others.

[identity profile] turol.livejournal.com 2007-01-08 08:10 pm (UTC)(link)
The wireless part of the network is encrypted

WEP or WPA? Because WEP breaks way too easily, especially if you move around lots of data. Always use WPA or WPA2.

[identity profile] ffutures.livejournal.com 2007-01-08 10:17 pm (UTC)(link)
WPA-PSK, which I hope is the same thing.

[identity profile] saranjeuhal.livejournal.com 2007-01-08 10:46 pm (UTC)(link)
Aye, that's WPA with a shared key, which is the standard. WPA is not only more secure but has less transmission overhead and breaks less easily for data correction. WPA2 is what you really want, but WPA over WEP any day.

[identity profile] uk-lemming.livejournal.com 2007-01-09 12:55 pm (UTC)(link)
Provided you use an IP adress of 192.168.xxx.xxx or 10.xxx.xxx.xxx (These are the most common private ranges, there are others, but I can't remember them off of the top of my head) you'll be fine - these cannot be routed to from a public IP, it has to be done through NAT and Port Forwarding. provided you don't have a DMZ option open, and pointed at 'hermione' then nobody should be able to see it.

[identity profile] ffutures.livejournal.com 2007-01-09 02:04 pm (UTC)(link)
It's 192.168 something so hopefully OK.
ext_8559: Cartoon me (Default)

[identity profile] the-magician.livejournal.com 2007-01-09 12:07 am (UTC)(link)
How do you set up your webserver on NTL (I came in through Telewest but I assume I'll have to do pretty much the same thing) ... Windows XP behind a Linksys Cable/DSL router (I have a Linksys 54G router, but I'm not using it yet)

[identity profile] ffutures.livejournal.com 2007-01-09 01:20 am (UTC)(link)
Pretty much the same - router with XP and OS-X on the computers - but I'm not serving my web sites from inside my network (if that's what you mean), I've got a couple of hundred megs at forgottenfutures.com and 50mb at forgottenfutures.co.uk and for the moment that's enough to hold all of the free downloads etc. I provide. I just upload new stuff by FTP occasionally.

[identity profile] uk-lemming.livejournal.com 2007-01-09 12:59 pm (UTC)(link)
I have a domain with the DNS hosted at 123reg.co.uk and I can just add the IP address to it every time it changes. It's practically instant. With NTL you have a static IP address that is linked to the MAC adress of the piece of kit connected to the Cable Modem. As Long you don't change the MAC address (Ie change the router...) the IP adress will be the same, even if you power it all off and back up again.

or you can get something like dyndns.org and run the application on the inside, but that costs money for a personalised Domain, and I'm a student. Skint just about covers it.
Flat | Top-Level Comments Only