Difference between revisions of "DMZ"
The Wiki of Unify contains information on clients and devices, communications systems and unified communications. - Unify GmbH & Co. KG is a Trademark Licensee of Siemens AG.
(3 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
− | + | {{Breadcrumb|0|0|Glossary}} | |
− | {{ | ||
− | |||
'''DMZ''' = '''D'''e'''M'''ilitarized '''Z'''one | '''DMZ''' = '''D'''e'''M'''ilitarized '''Z'''one | ||
Line 7: | Line 5: | ||
== Explanation == | == Explanation == | ||
− | The '''DMZ''' is a | + | The '''DMZ''' is a logically and physically separated Ethernet connection from both the internal secure (usually the trusted ''Intra''net) and the external insecure (usually the untrusted ''Inter''net) networks provided by a Firewall via a so called ''three-legged'' firewall setup (a so called ''screened-subnet'' firewall setup is also available using two separate Firewalls). |
− | The DMZ aids the connection of e-Mail Servers, WEB Servers | + | The DMZ aids the connection of e-Mail Servers, WEB Servers and [[FTP]] Servers or [[WLAN]] Access Points on a semi-secure network segment under the following general conditions: |
* Specification of a separate IP addressing subnet | * Specification of a separate IP addressing subnet | ||
− | * Separate physical [[LAN]] Ethernet port (or ports), protected by the system Firewall that can acts like a Proxy Server as well | + | * Separate physical [[LAN]] Ethernet port (or ports), protected by the system Firewall that can acts like a Proxy Server as well |
For anyone on the external insecure network who wants to illegally connect to the internal trusted network, the DMZ is a dead end. | For anyone on the external insecure network who wants to illegally connect to the internal trusted network, the DMZ is a dead end. | ||
Line 18: | Line 16: | ||
== Erläuterung == | == Erläuterung == | ||
− | DMZ ist eine logisch und physikalisch getrennte Ethernet-Verbindung zwischen einem internen, sicheren Netz (üblicherweise ein vertrauliches Intranet) und einem externen, unsicheren Netz (in der Regel das Internet). Die Verbindung wird durch eine Firewall hergestellt. | + | '''DMZ''' ist eine logisch und physikalisch getrennte Ethernet-Verbindung zwischen einem internen, sicheren Netz (üblicherweise ein vertrauliches Intranet) und einem externen, unsicheren Netz (in der Regel das Internet). Die Verbindung wird durch eine Firewall hergestellt. |
− | DMZ bietet eine sichere Verbindung für Email-, WEB | + | DMZ bietet eine sichere Verbindung für Email-, WEB und [[FTP]] Server und [[WLAN]] Access Points. |
== See also / Siehe auch == | == See also / Siehe auch == |
Latest revision as of 12:21, 25 April 2011
DMZ = DeMilitarized Zone
Explanation
The DMZ is a logically and physically separated Ethernet connection from both the internal secure (usually the trusted Intranet) and the external insecure (usually the untrusted Internet) networks provided by a Firewall via a so called three-legged firewall setup (a so called screened-subnet firewall setup is also available using two separate Firewalls).
The DMZ aids the connection of e-Mail Servers, WEB Servers and FTP Servers or WLAN Access Points on a semi-secure network segment under the following general conditions:
- Specification of a separate IP addressing subnet
- Separate physical LAN Ethernet port (or ports), protected by the system Firewall that can acts like a Proxy Server as well
For anyone on the external insecure network who wants to illegally connect to the internal trusted network, the DMZ is a dead end.
Erläuterung
DMZ ist eine logisch und physikalisch getrennte Ethernet-Verbindung zwischen einem internen, sicheren Netz (üblicherweise ein vertrauliches Intranet) und einem externen, unsicheren Netz (in der Regel das Internet). Die Verbindung wird durch eine Firewall hergestellt.
DMZ bietet eine sichere Verbindung für Email-, WEB und FTP Server und WLAN Access Points.