1 - LinkSys WRT54G Router (WPA configured and connection filtered by mac address)
2 workstations and 1 laptop, laptop custom configured for security and vpn (no comment), one pc has Kerio Firewall (4th in a list of firewalls tested), Avast Antivirus, PeerGuardian, SpySweeper, SpyBot, AdAware, and another program I cannot mention (I get stuff from friends in the firewall/security industry whom I used to work with). The other pc has Comodo Personal Firewall, Eblaster Spector Pro Internet Spy, and AVG Antivirus plus all the other same stuff.

I do have a separate hardware firewall, but I choose not to use it.
I have some backup routers I don't use.
Other junk (just like everyone else :o)

The most important pieces are the firewall, filters, and Internet Spy software (on my daughter's pc).

I have some other 'peripherals' that are not worth mentioning as they come and go or are not connected continuously such as blue tooth devices (have to write some apps for those), cell phones, music junk (ipod falls into this category)...

UPDATE: THE most important piece is actually my external harddrive and Norton Ghost (used to create my backup images of all systems) :o)




>Mike,
>>>You might consider locking down the machines that your daughters use.
>>>
>>>Naw, the Mac wasn't infected because viruses aren't usually cross-platform. If Macs were as prevalent as Windows machines, you would be hearing the same thing about them.
>>
>>They are locked down now and will remain that way until I get the two main computers straightened out. Then the plan is to back up what needs to be saved (downloaded music and pictures from their digital cameras mostly) and reformat both drives. What fun....
>
>I am mostly with the other Mike on "safety" of other platforms: the number of reachable targets is a large factor of the risk. While OSX fared better the XP, Leopard seems to have some trouble programmed for it. And if the number of targets is juicy someone will make a stronger effort and find a leak even in a more robust system.
>
>Currently I employ very draconian safety: sneaker net only for the kid's machines (usually something gets copied to those machines) and Internet only with a grown up watching and on a specific net-connected machine running knoppix. But that will change in the next years - so I am thinking of splitting off at least one secure subnet and/or employing virtual linux machines for browsing. Would be interested in your final layout and reasoning (and the ways to cope others have taken in similar position: Tracy, Al, Dragan, Jos - anybody else ?)
>
>Sometimes I loath the thought of things to come - Silverlight and the other attempts at Web3.0 will open the door for cross OS virus infection wider.
>
>regards
>
>thomas