There is a firewall between DMZ and Internal network. We have used expressway E as dual interfaces one is in the DMZ and other is in the internal network.
Clint is insisting that there is security risk deploying expressway in this way? Please advice
Your Client is right!
Expressway E is supposed to be connected to the DMZ network.
If you can use an offical ip without nat address you only need 1 interface.
If you have to use nat then you will need two dmz networks.
You can find information within the Configuration Guides:
If that host gets compromised then the attacker will be able to innitiate traffics to both interfaces without going across the firewall.
My Question is there any security risk deploying expressway in this way one interface is in DMZ and other is in internal?