Introduction
I've setup a small home network at my appartment and while not quite all of this is implemented yet, this is a quick rundown of my setup. The network has a single internet connection, through our access point, and uses a wireless access point for the internal network.
Structure
The network consists of the single "internal" subnet of 192.168.1.0, which joins both the ethernet network and the Wireless network. The Access Point acts as the gateway through a cable modem. Unfortunatly, there is no easy way to configure our AP to use a different gateway. The wireless network is unencrypted, since a network should never be trusted anyhow, and authorized through MACs.
Firewall/NAT
The entire network is firewalled through the Access Point, with all traffic being passed through to Casper. Further, all outgoing traffic is NATed by the AP. Casper is using the Linux Kernel to act as a firewall. The firewall is a generic drop everything that isn't specifically allowed from outside.
Authentication
If you haven't guessed from my HowTo in progress, I'm using OpenLDAP to store all DNS, host and user information and using Kerberos for authentication. krb5.lauricha.com is the kerberos server; ldap.lauricha.com is the ldap server; both are aliases for casper.lauricha.com.
Hosts
Aside from casper and the accesspoint, only Tux and Frosty are allowed access; making this a rather small network.