Scott M. said:
You can think of a switch as an "extension cord" for your network. It
lets you add more clients to the same internet connection that is plugged
in further upstream in the same way that an extension cord lets you add
more electrical devices to the same electrical current plugged in further
up the circuit.
A router is a switch (extension cord) but it has more features as well. A
router usually has a DHCP (Dynamic Host Control Protocol) server, which
allows it to assign IP addresses to all the computers connected to it or
further downstream (via switches) so that each machine on the network can
be identified.
Without a router, you have 2 ways to get the computers identified on the
network:
1. You go to each computer on your network and "hard-wire" its IP address
into it (via the TCP/IP properties of your network connection).
2. You go to each computer on your network and choose to "Obtain an IP
address automatically" (via the TCP/IP properties of your network
connection).
Now, with choice number 2 (which is the most common approach for those who
do not have static IP addresses), you will need something that can pass
out IP addresses to those computers who try to obtain them automatically.
A DHCP Server does this and I said earlier, a switch won't have this but
most routers do.
The IP addresses of XP Home machines do not differ in any way from the IP
addresses of XP Pro. machines. It all depends on your networks particular
settings.
Also, many routers have firewalls built into them (known as hardware
firewalls). Because a router is usually connected directly to your
Internet connection (DSL/Cable modem), they are the first device that the
broadband signal hits in your network. This is the most desirable place
to have a firewall.
Anyone who has broadband Internet should most definitely have a router
w/firewall.
All Routers (Gateways) are a Hardware Firewall because they all have NAT
capabilities regardless what the Box says at the store. But I warn you, UpnP
is a security risk because it could allow malicious software to open up
ports. So I would recommend a software firewall with outbound protection.
This does not include the built-in XP firewall since it cannot block
outbound traffic nor can a Router.
Then if you have a Wireless Router, you must secure the Router correctly.
You should have the SID disabled, an encryption key to logged on, and maybe
a MAC Restrictions in place. I would also disable the DHCP and assign all
IPs myself to the computers. Also I would change the Gateway Local IP
Address so it would not be the traditional 192.168.1.1 or 192.168.0.1. Since
it is a private network, you could assign any Local IP address you wish.
Derek