Isolating a computer in the network
- by Karma Soone
I've got a small network and want to isolate one of the computers from the whole network.
My Network:
<----> Trusted PC 1
ADSL Router --> Netgear dg834g <----> Trusted PC 2
<----> Untrusted PC
I want to isolate this untrusted PC in the network.
That means the network should be secure against :
* ARP Poisoning
* Sniffing
* Untrusted PC should not see / reach any other computers within the network but can go out the internet.
Static DHCP and switch usage solves the problem of sniffing/ARP poisoning.
I can enable IPSec between computers but the real problem is sniffing the traffic between the router and one of the trusted computers.
Against getting a new IP address (second IP address from the same computer) I need a firewall with port security (I think) or I don't think my ADSL router supports that.
To summarise I'm looking for a hardware firewall/router which can isolate one port from the rest of the network. Could you recommend such a hardware or can I easily accomplish that with my current network?