Header

Sections

Syndication

Blogroll:

||||| ALL Cisco-Network ARTICLES |||||
CCIE Journey,
The CCIE Journey,

Home : Cisco Computer Networking : A Safe but Potentially Risky Place: The DMZ

Email to a friend email

email

Print version print

print

A Safe but Potentially Risky Place: The DMZ

Nov 26,2008 by alperen

small font

medium font

large font

A Safe but Potentially Risky Place: The DMZ

[View full size image]

When using a DMZ, the flows that are allowed are the same as before, but the location of the servers that are accessible from the Internet has changed. The Internet-accessible servers have been placed on a different LAN. Because of that, a strong rule can be configured on the firewall: Absolutely no TCP connections can be initiated from the outside (Internet) to the inside (the internal network). The only flows that are allowed to be initiated into Fred's internal network are the ones to the servers in the DMZ. By using a DMZ, the firewall creates a stronger, more secure set of security rules.

220 times read

Related news

» Typical Types of Traffic Allowed Between an Enterprise and the Internet
by alperen posted on Nov 26,2008
» Traffic That's Typically Not Allowed
by alperen posted on Nov 26,2008
» Allowing the TCP Connection from Figure 18-5
by alperen posted on Nov 26,2008
» Ways to Watch Your (Network) Neighborhood
by alperen posted on Nov 26,2008
» An Enterprise Network Connecting to the Internet
by alperen posted on Nov 26,2008

Did you enjoy this article?

(total 0 votes)

comment

Comments (0 posted)

More Top News

CCSP-Cisco Certified Security Professional

Cisco SAFE Implementation

Preparation Documents

Skills Required for the Exam

Cisco SAFE Implementation Questions and Answers

Access Control Lists Cisco

Access List Basics

Standard Access Lists

Extended Access Lists

TCP Access Lists

UDP Access Lists

ICMP Access Lists

Named Access Lists

Signature and Alarm Management Review

Signature and Alarm Management Review Questions and Answers

Managing Alarms

Event Viewer Customization

Preference Settings

Sensor Installation

Connecting to Your Network Sensor Appliance

Sensor Bootstrap

Sensor Installation and Configuration Review

Sensor Installation and Configuration Questions and Answers

Signature and Alarm Management

CIDS Signatures

Signature Series

Signature Implementations

Signature Classes

Signature Types

Signature Severity

Most Popular

Privilege Levels

Managing the Router's ARP Cache

Configuring SIP on a Cisco Router

IDS Signatures Grouped by Software Release Version

Most Commented

Exploring the Navigation Bar

Site Qualification Test (SQT)

PDAs as Diagnostic Tools

Featured Author

admin