[proxy_user]

NAT is the answer. Broadband users, learn how to configure your router. Just because you have an app listening on a port on a PC on your intranet doesn't mean you have to let outsiders connect. Get a hardware firewall and use it!

[AdA$tra]

I brought home an extra SonicWall firewall appliance from work. I recomend the Linksys router to my friends/clients as it is less than $100.00 on the web and has a built in 10/100 auto-sensing 4 port switch included. Both of these allow for easy setup of NAT between your perimeter and secure or un-routable side of your home network.

[MarkL]

NAT is the answer. Broadband users, learn how to configure your router. Just because you have an app listening on a port on a PC on your intranet doesn't mean you have to let outsiders connect. Get a hardware firewall and use it!

Sorry, but you're wrong... A trojan works like the "Trojan Horse." Once it's inside your NAT router, it connects to the outside from within your network. The only way to block it is by knowing what port the trojan will use, and then blocking that port at the router. Most people who will buy a HW firewall (i.e. not businesses) will use the plug and play features, never really configuring the device.

Mark