DMZ

February 24, 2024 | seedling, permanent

tags :

Security and Networking #

URL A DMZ or demilitarized zone is a perimeter network that protects and adds an extra layer of security to an organization’s internal local-area network from untrusted traffic.

The end goal of a demilitarized zone network is to allow:

an organization to access untrusted networks, such as the internet, while ensuring its private network or LAN remains secure.
Organizations typically *store external-facing services and resources, as well as servers for the Domain Name System (DNS), File Transfer Protocol (FTP), mail, proxy, Voice over Internet Protocol (VoIP), and web servers, in the DMZ.

Services of a DMZ include: #

DNS servers FTP servers Mail servers Proxy servers Web servers

Is a DMZ safe? #

The DMZ network itself is not safe.

It enables hosts and systems stored within it to be accessible from untrusted external networks, such as the internet, while keeping other hosts and systems on private networks isolated.
The main purpose of using a DMZ network is that it can add a layer of protection for your LAN, making it much harder to access in case of an attempted breach.

Links to this note

Observability and Management in OCI