03-20-2006 09:41 AM - edited 03-09-2019 02:19 PM
I am looking for some informaiton on setting up and discussing the basics of a DMZ.
03-20-2006 11:36 AM
a dmz is a seperate interface on the pix with a different security level . the dmz interface will host all the publicly assessible servers. if u want to know any configuration of the dmz . let me know. see ya
sebastan
03-20-2006 11:49 PM
just a quick add-on.
dmz is used to host public server such as web server, which in turn connects to the database server located in the inside subnet.
inbound access usually is retricted to the dmz server, such as tcp 80 for a web server. the web server is then restricted to access the database server with one or two ports permitted.
providing a dmz server has been compromised, the intruder would not immediately gain full access to the inside subnet except the specific ports to the database server. again, the intruder needs to spend some extra time to crack into the database server from the web server. and hopefully, the security administrator would have enough time to be alerted and react on it.
03-21-2006 06:27 AM
Thanks Sebastan. If you have a config or a link on Cisco.com that would be great.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: