[Search for users]
[Overall Top Noters]
[List of all Conferences]
[Download this site]
| Title: | SEAL |
|
| Moderator: | GALVIA::SMITH |
|
| Created: | Mon Mar 21 1994 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 1989 |
| Total number of notes: | 8209 |
What is a DMZ?
I used to understand what a DMZ was, in firewall terms. It
used to be the red lan, didn't it? That was reasonable when
access to that lan by packets was controlled from each side -
both the ISP router and the gate were screening what's trying
to get to that lan.
Nowadays, I think the term is useless because there's no common
meaning for the term across the industry. The red lan is no
longer a DMZ in a single machine firewall, particularly if you
let everything hit the outside of the firewall.
I've seen the network connecting gatekeeper and gate in a two
node firewall called a DMZ. I think that is valid, since
absolutely nobody goes into that network. But this doesn't
map onto the one node firewall.
I've seen green net called a DMZ. I've even seen the immediate
blue lan called a DMZ, when this was simply a cable connecting
to a dozen internal routers to the real blue network.
So, what is a DMZ these days? Is it still a useful term?
T
| T.R | Title | User | Personal
Name | Date | Lines |
|---|
| 1923.1 | | CHEFS::16.42.4.226::hattos | I'm back - as a matter of fact | Sat Apr 26 1997 11:52 | 8 |
| Tony,
I think that useful or not, DMZ is a term which has stuck.
I believe it to be the green net idea, but as you point out the others are
possibly valid also.
Stu
|