Comparing Routers

I put this in this Section as I have a tough time deciding whether it is more hardware or security related. I think Security.

In another post Newt got me thinking ( unusual for me but that is another story ) when he mentioned replacing a working Router/Switch with a newer one because of the firewall.

This testing is done with no software Firewall even installed ( at this time )

I don't think the OS even has anything to do with this but I list them just in case. Testing involves a XP Pro machine and a Win98 SE machine.

When I use a Linksys BEFSR41.

We can play all LAN games between the two machine with no problems. Including Links 2001.

With no software firewall we can play Links 2003 with our Friend in Canada from the XP machine ( won't run on the SE machine anyway ) with no proplem.

When I use a D-Link704UP.

We can play all games between the machines except Links 2001 and a Bowling game that we have.

We can not connect to the Friend in Canada.

Doing some checking on the two I read that;

With the Linksys NAT acts as a Firewall

With the D-Link it has a hardware firewall

Is this telling me that the D-link is not only protecting us better from the Web side but also from the LAN side ?

If this is the case then;

With three machines on most of the time and three teenagers and one 7 year old using two of them I get the strong feeling that I should accept the slight inconvience ( which can be fixed by working at it ) and leave the D-Link in service because it appears to be much better protection.

BillyBob

 

Latest test results and more ideas.

D-Link704UP

According to GRC ALL ports except 1 are STEALTHED

They aso explain why that one is only closed. I take it as that is an intentionally done by the Router.

Symantec also reports all ports ( except the same one ) as STEALTHED

This is BY FAR better ( I think ) than the same reports when using the Linksys BEFSR41 where all but a few ports were just [color-red]CLOSED[color]

BillyBob

 

Hi there TonyT

Looks like you and I were writing at the same time.

Doing some checking where?

At the Home site of each Router.

Accroding to the reports ( in my previous reply ) there must be something different about the two.

It may well be because my Linksys is an older model too.

BillyBob

 

I also forgot something.

The D-Link does not allow Links Golf and a Bowling game to connect over the LAN like the Linksys did.

So again. There must be some difference somewhere.

With either one I just plugged them in and set them for DHCP and let the Router do the rest.

Ain't that the way it is supposed to be ?

BillyBob

 

First and foremost. Thank you TonyT for helping me out here.

That was a rather non-thinking Question on my part.

What I may have been thinking about was the DHCP side that assigns IP addresses to each NIC. ( that part does work just fine )

But I think there must be a different in the Routers themselves somewhere.

A check at GRC with the D-Link set at default returns all ports but 113 to be stealthed.

If I enable the DMZ on the D-Link the same test comes back the same as the Linksys. ( most ports just clesed with a few open )

But as I mentoned before, my Linksys is an okder model ( I think one of the first ones out )

But I think the bpttom line is that I just need to get used to something new and different. And with help from you and others I will get things fixed up and working.

ANd I want to keep the D-Link as it does have the Print server on it which I have had working.

I looked at the site you pointed to and now all I need to do is figure out how to enter that data. And get in contact with out Friend and test it out. As I Links 2003 will not run on the 98SE machine. Well it will run but SLOWER the SLOW. The SE machine lacks both Procsesser Power and RAM.

BillyBob

 

In the Advanced/Application Section of the D-Link Router.

Is this where I would enter the Info provided by the Link YonyT pointed me too ?

From the page above.

Enabled Disabled
Name
Trigger Port -
Trigger Type TCPUDPBoth
Public Ports
Public Type TCPUDPBoth


So it would look like

Enabled

Name=Links 2003
Trigger Port = 6073
Trigger Type= UDP

Public ports= 2302-2400
Public type = UDP

I need ALL of the help I can get here as this is all new to me.

BillyBob

 

Clarification. NAT is not a firewall although it will block some unwanted stuff in semi-firewall fashion and earlier SOHO router/switch devices would strongly imply that it was a good firewall or firewall substitute or similar phrase.

Take a look at Router, NAT, Firewall discussion from the Networking section for details.

 

Good info TonyT and thanks.

Let me rephrase a little. For me, a router's NAT is not a good substitute for a stateful firewall. For me, a dedicated hardware firewall is a much better option than a software firewall.

 

Latest report.

I went back to a newer model of the Linksys BEFSR41 Router and all problems have left the scene. ALL games play between the machines. We played Golf with our Friend in Canada Tuesday evening and all went just fine.

I lost of course. And YES I did play in the sand a time or two- But I got a 45 yard BIRDIE out of one bunker. But my Wife was just kind enough to make a 20 foot putt for a Birdie so we tied the hole.

GRC and Symantec now report all ports ( except 113 ) to be stealthed. ( unlike the old Linksys where they were reported only closed.

Both the LAN and the WAN are working MUCH smoother and faster.

So it is on to the next project. A Print serveer. But I need to get a printer that is compatable with a server. The one I have is not. Or so I was impolitely told when I tried to set it up.

Well, my Wife wants to play a game of Cribbage and that is a chalenge that I can't refuse.

BillyBob