Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
207
Views
0
Helpful
1
Replies

security issues

jawwalit
Level 1
Level 1

‎07-30-2006 04:04 AM - edited ‎03-09-2019 03:44 PM

Hi:

i have a pix firewall, which is conneted to DMZ, outside and inside and i have also a web server which used as public service for the outside users (any client) my points if i put this server in the LAN instead of dmz by using static nat what security risk may i faces .

regards

Labels:
0 Helpful
1 Reply 1

mpalardy
Level 3
Level 3

‎07-31-2006 07:06 AM

Issue of a DMZ utility depends on your tolerence to the risk of any web-attack. If you put your web-server on your internal network, you may be facing the risk of an intrusion on this server. Then your internal network will be at risk. Right? Personally I'd put a web-server into a DMZ and would set the lesser ACL's as possible to minimize the risk.

eg access-list outside permit any web-server tcp 80

You may also want to add a few ports from the inside to the web-server for management purpose.

Hope it's clearer now,

Mike

0 Helpful
Customers Also Viewed These Support Documents