From owner-freebsd-questions Wed May 10 15:32:39 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail.enteract.com (mail.enteract.com [207.229.143.33]) by hub.freebsd.org (Postfix) with ESMTP id 7EF9837B9F8 for ; Wed, 10 May 2000 15:32:35 -0700 (PDT) (envelope-from nasby@shell-1.enteract.com) Received: from shell-1.enteract.com (nasby@shell-1.enteract.com [207.229.143.40]) by mail.enteract.com (8.9.3/8.9.3) with ESMTP id RAA60237 for ; Wed, 10 May 2000 17:32:34 -0500 (CDT) (envelope-from nasby@shell-1.enteract.com) Received: (from nasby@localhost) by shell-1.enteract.com (8.9.3/8.9.3) id RAA15701 for freebsd-questions@freebsd.org; Wed, 10 May 2000 17:32:34 -0500 (CDT) (envelope-from nasby) Date: Wed, 10 May 2000 17:32:34 -0500 From: "Jim C. Nasby" To: FreeBSD-questions Subject: Re: Offtopic - DMZ Message-ID: <20000510173233.N46955@enteract.com> Reply-To: jim@nasby.net Mail-Followup-To: FreeBSD-questions References: <000501bfbac0$824d62a0$8208a8c0@iqunlimited.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0pre3i In-Reply-To: <000501bfbac0$824d62a0$8208a8c0@iqunlimited.net> X-Operating-System: FreeBSD 3.3-STABLE i386 X-Distributed: Join the Effort! http://www.distributed.net Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG The definition I typically use is it's a partially secure zone setup between two firewalls... typically, the first firewall is between the DMZ and your ISP/NSP and the second is setup between the DMZ and your internal network. typical occupants of the DMZ are things like public webservers. Please note that what you're describing is not a terribly secure system... if I break into that single box, I'm into your entire network. Two seperate systems would be a much safer bet, if you can afford it. On Wed, May 10, 2000 at 10:44:17PM +0200, James A Wilde wrote: > Sorry to be off-topic, but I'd like to get the team's opinion of the meaning > of the term DMZ. I've always assumed that this refers to the Internet > Service lan on a triple-homed computer, where the three interfaces are > directed to a) the - hopefully - secure private network, b) the protected > but not fully so IS lan (DMZ) and c) the Internet, where the bad guys are. > > However, I keep seeing references which indicate that people see the > Internet as the DMZ. I can't see that there is anything demilitarized about > the Internet... > > So what's the answer? > > mvh/regards > > James > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- Jim C. Nasby (aka Decibel!) /^\ jim@nasby.net /___\ Freelance lighting designer and database developer / | \ Member: Triangle Fraternity, Sports Car Club of America /___|___\ Give your computer some brain-candy! www.distributed.net Team #1828 Get paid to surf!! http://www.enteract.com/~nasby/alladvantage.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message