Network Security | What is a DMZ?
iSpeech
Network Security | What is a DMZ?
The DMZ is a glowing example of the Defence in Depth principle. It is a network layer between insecure networks, like the internet, and networks we need to protect from attack.
The general idea behind the DMZ is to prevent direct access from the insecure network to the protected network. Instead, servers placed in the DMZ accept requests, and then open a new connection to the protected resources on behalf of the original clients.
To add security, there are firewalls and IPS’s between all of these networks. This adds up to several layers of security that needs to be compromised before an attacker can reach our protected resources.
Also see:
https://www.sans.org/reading-room/whitepapers/firewalls/designing-dmz-950
Patreon information: https://networkdirection.net/patreon/
Overview of this video:
0:42 The Risk
1:33 DMZ to the Rescue
4:17 Building a DMZ
7:42 Firewall Topologies
LET'S CONNECT
🌏 https://www.youtube.com/c/networkdirection
🌏 https://twitter.com/NetwrkDirection
🌏 https://www.patreon.com/NetworkDirection
🌏 https://www.networkdirection.net
#NetworkDirection
2019-07-23 20:00:00
source
Gloss