I hate this term, but I'm going to use it anyway because everyone has a bit of a grasp on it. Think of it as a small security zone, fenced off with firewalls, protecting some servers that provide a particular service.
Do not think that the DMZ security discussion only applies to a network connecting the internet to your internal network.
Do not think that you are only permitted one such network: The DMZ.
Definitely do not use a cheap home router where you can enter a single IP address as the DMZ. This is just terrifying. All the internet traffic gets routed to the internal host you specify without any further protection. Strangely NetGear acknowledge this in their documentation and say it should be called 'Exposed Host' instead. Why do you not just rename it then NetGear!!
No comments:
Post a Comment