You know what I think?
I think it's time for me to buy a Juniper SSG-5. Unless Cisco can give me a comparable (in cost, at least) solution, that is...
This thing will simplify securing the two internet-facing machines I have now (just dump them in a DMZ and allow the usual suspects through to untrust), and I believe this will also allow me to not have to have two interfaces on each machine (allow all the internal stuff from the trust network). I'll have to ponder this some more.
Sure, it's around $700 for one, but like my AirPort Express, it may end up solving a lot of nagging headaches I've had to live with.
This thing will simplify securing the two internet-facing machines I have now (just dump them in a DMZ and allow the usual suspects through to untrust), and I believe this will also allow me to not have to have two interfaces on each machine (allow all the internal stuff from the trust network). I'll have to ponder this some more.
Sure, it's around $700 for one, but like my AirPort Express, it may end up solving a lot of nagging headaches I've had to live with.