TCP/IP Security

[dspires]

I have a deployed solution: a wireless IEEE 802.11b network (Airport) with a G4/FMP 5.0 Server (comp-comp, appletalk) and iMacs/iBooks running FMP 5.0. They are planning to install a high speed internet (cable) ISP connection to provide internet access and for remote database admin.

Right now a G4 cube is serving the database via appletalk, but since I will have to change this to include TCP/IP, I was wanting to know if there is a way to contol database access based on connection type? Specifically, is there a way to preclude users with FMP 5.0 on an external computer with a limited (non admin) password from accessing the database via TCP/IP while allowing me to use that protocol?

Any additional security consideration comments are welcome....

[LiveOak]

Maybe. You can include a router between your internet connection and your AirPort hub. This will, however, preclude access from any old IP address to your network. You may allow specific address or blocks of addresses access. You can assign your computer an IP address and still use AppleTalk for FM, they are not mutually exclusive. If you are hosting using FM Server 5, you can select AppleTalk, TCP/IP or both. -bd