|
If he's going to do something like this, he' should disconnect the router from the switch. If he doesn't, that's going to mess things up severely; also, keeping the switch connected to the router and setting it up the way he wants makes absolutely NO sense. It certainly won't get him any security benefits.
If he wants to use the computer as a sort of bastion host between the rest of the network and the internet, then disconnecting the router from the switch and wiring it as modem-->router-->NIC #1-->Windows ICS/NAT-->NIC #2-->Switch will protect any other computers on that switch somewhat, assuming the bastion host is configured properly. If there are no other computers on that network, then there is no point to this setup. If there ARE other computers on the network, and he doesn't disconnect the switch from the router, then his system isn't doing a thing to protect the network; the other computers will connect through the switch and the router, not through his computer.
|