View Single Post
  #36  
Old January 2nd 18, 05:25 AM posted to alt.windows7.general,microsoft.public.windowsxp.general
Mayayana
external usenet poster
 
Posts: 6,438
Default Windows DNS cache

"Paul" wrote

| There are a couple possibilities.
|

I don't really follow your explanations here. I have
cable, not DSL. The cable co-axial connects to a router.
Computers are wired to that, using fixed IP addresses
on this side. The cable company assigns an outside
IP, but it rarely changes. Probably just often enough
to stop me hosting a server.
I'm using fixed IP only because I don't like to allow
svchost through my software firewalls. DHCP is one
of the things that runs under svchost. When I first
got Win7 that was the only thing that svchost was
needed for that I didn't already have disabled. So I
switched to fixed IP addressing.

-------------------------------------

| RJ11 +----------------------------------+ RJ45 Eth +-------------
| ---| ADSL Modem alone or |-----------| Single PC
| | ADSL Modem/Router in Bridged Mode| PPPOE | Enter user/pass for
PPPOE in a windows dialog.
| +----------------------------------+ | (Older Windows don't
have PPPOE, but do have PPP dialup)
| | Windows Firewall,
*only protection*
| | Can be port scanned
for fun and profit.
| | This is the dumb
option, almost like DMZ.
| +-------------
| or you could have the more normal setup
|
| RJ11 +----------------------------------+ RJ45 Eth +-------------
| ---| ADSL Modem/Router in Routed Mode |-----------| Single PC
| | (ISP default, terminates PPPOE| | "Normal" | No password in this
box, for network
| | You put user/pass inside this box| | Windows Firewall
optional for IPV4
| | IPV4 offers NAT | | Windows Firewall
likely useful for IPV6.
| | IPV6 is security by obscurity | +-------------
| +----------------------------------+
|
| You can buy single port routers, such as the BEFSR41 years ago.
| It had one WAN port and one LAN port. A single port router
| translates between 192.168.0.2 LAN to whatever DHCP WAN address
| the ISP gives you on PPPOE login. The "ipconfig" command
| can give you some idea, just how bonkers your setup is :-)
|
| In the first picture, your "ipconfig" local address is
| an internet address, like 71.123.100.32.
|
| In the second picture, since routing and local DHCP are
| in usage, your local address could be 10.x.x.x or 192.168.x.x
| and so on. The second picture offers some protection for IPV4.
| Depending on how addresses are allocated (apparently there's
| more than one way to do it), link local addresses
| on IPV6 number 4 billion. So if someone wants to scan you,
| it would take a while just based on IP address alone.
|
| Google bought a block of 2^96 IPV6 addresses, leaving 2^64
| to address homes, and 2^32 inside each home for IoT etc.
| I'm still not using IPV6, and have little interest in it
| (it generally sucks for things I care about). It would
| be a nightmare to monitor, just to read and translate
| what the hell the addresses mean. When the day
| comes that I need to switch, I'm going to have to hire
| a "network guy" :-( Just so I don't get it wrong.
|
| Paul


Ads