I'm looking for some advice on wheter it's a good idea to move the  
router functionallity from a standalone box to my server. This is for  
home use and the reason is to reduce the number of machines that  
needs to be feed with power 24/7. The server is only running a small  
set of services such as DHCP, NFS and NTP on the behalf of my home  
network which isn't too crowded. Would enabling packet forwarding and  
using ipf/pf be a good idea in a "secure-enough-for-home-use" context?

One thing that I will do is to try to make sure that all services  
only accepts requests from inbound interface and use a sane set of  
rules for the packet filter, but are there other steps I could take  
to lessen the chans for a disaster?

I suppose that one could go as far as using a combination of read- 
only disks, securelevel, veriexec and systrace but that seems just a  
bit paranoid for a simple home user like myself. It would be cool  
though.

By the way, have been running 4.0_RC4 with zero downtime since it was  
tagged so it's looking good from what I can tell! :-)

Regards, Micke