Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [dmz]

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

The purpose of a DMZ is to add an additional layer of security to an organization's local area network (LAN); an external attacker only has access to equipment in the DMZ, rather than any other part of the network.

204 questions
0
votes
1 answer

How to setup a web ERP server that needs to be accessible outside the local network?

We have a network of servers and computers on an AD Domain. One of the servers runs a PHP based management system (ERP) and we want to have it accessible on the internet. When I say internet I don't mean on google or anything, just an open port with…
Abdullah Seba
  • 125
  • 3
0
votes
1 answer

Access Samba server in light "DMZ" using two Fritzbox 7390

I'm using a router cascade out of two Fritzbox 7390 to implement a light version of a DMZ. Every Fritzbox has its own subnet. Fritzbox 1 (192.168.178.0/24) is connected to the Internet Service Provider. The Fritzbox 2 (192.168.188.0/24) uses the WAN…
Jonny Schubert
  • 121
  • 5
0
votes
0 answers

How to configure two firewalls for two WANs and one LAN

I have two WANs with static IPs: DSL (PPPoA) Fibre (Ethernet through fibre media converter) So far I was using one firewall Vigor2830Vn to handle traffic from both WAN ports. But I need to be able to restart it from the internet in case it becomes…
Greg
  • 198
  • 10
0
votes
1 answer

DMZ on Hyper-V using VLAN with fortigate

One of my customers would like to publish his HR Portal on the internet, It is a IIS website, running on a virtual machine in a Hyper-V environment. This company has a single host, with 2 NIC paired, connected to the firewall (Fortigate 60D). My…
Martino Pavese
  • 1
  • 1
0
votes
1 answer

Pysical Server 2 NICS LAN and DMZ

I'm after some advice. I have a Physical server with 2 on-board NICs. Currently only one is used for LAN. If I wanted to setup Hyper-V and use the second NIC for DMZ stuff, is that possible? I worry that the server will use the try to use the DMZ…
Lee Stevens
  • 103
  • 3
0
votes
2 answers

Cisco Asa 5506 Public IP's in DMZ

I am running an ASA 5506 (9.6). I have two IP Ranges 1.35.133.88/29 and 1.35.135.176/29. I have setup in my router the routes. I have an outside interface with 1.35.133.90. I have an DMZ interface with 1.35.135.178. Below you can find the…
user29815
  • 101
  • 3
0
votes
1 answer

Issues with DMZ on Fortigate 90D, second router can't reach internet

I am having issues setting up a DMZ port on my Firewall (hardware router). I am also assuming this belongs in Super User, as it seems like a basic DMZ setup. Here is the setup: I have a Fortigate 90D Firewall (FortiOS 5.4) setup with 2 WAN ports…
dakre18
  • 101
  • 5
0
votes
1 answer

Why is my ISP box talking to my DMZ host?

I have a setup where an internet connection is available via ISP box, which has a DMZ feature (one of the hosts can be exposed to Internet). The general setup is the following Internet - PublicIP - 192.168.0.254 - 192.168.0.10 [ FAI box …
WoJ
  • 3,607
  • 9
  • 49
  • 79
0
votes
2 answers

Can I make VM's accessible over VPN, but not LAN?

In the near future, my firm will begin hosting Terminal Services systems for a few business customers. The Terminal Services Servers will be VM's on one of two large VM hosts. To provide secure access, we will be setting up a site-to-site VPN…
Nic
  • 13,425
  • 17
  • 61
  • 104
0
votes
1 answer

Router configuration, subnetting, DMZ

I'd like to use a subnet of our public IP addresses in the DMZ like shown in this picture: Does my provider have to add a routing entry on the first router for the DMZ-net? Can I assign the whole 193.168.5.0/24 net to the WAN interface of the…
chris
  • 103
  • 5
0
votes
1 answer

Test WAN access to our local area network after opening the DMZ

On our router we have recently opened a port. We want to test whether those outside our local area network are able to obtain access. How can we do this? Unfortunately, we do not have a connection to anything other than our local area network. We…
Shaun Luttin
  • 727
  • 3
  • 7
  • 11
0
votes
1 answer

When I ping local IP address I get a reply from external IP

I have SonicWall NSA 2400. Port X2 is WAN port with following settings X.X.X.250 / 255.255.255.248. I connected VPN concentrator to port X5, which is assigned to DMZ zone in Transporarent IP Mode for transparent range X.X.X.252 /…
Sergey Minsky
  • 1
  • 1
0
votes
1 answer

Domino web server config

I am configuring a Domino web server. I have configured it as follows: Web server has no connection to admin server. Connections are initiated by the Admin server. Admin server has a connection document, replicating core system dbs and the…
atom
  • 181
  • 5
  • 16
0
votes
1 answer

Accessing files located on the file server from the DMZ

I need to set in place a new ASP.NET MVC solution where authenticated users can download files (originally located on the internal network). For security reasons, accessing internal network from the DMZ is not recommended so I think of a way to…
Bronzato
  • 155
  • 2
  • 4
  • 7
0
votes
2 answers

tunnel port 8080 over jumpserver using ssh - socks5 proxy?

I have this setup: LocalPC - Jumpserver - Webserver with page only accessible on this machine via localhost:8080 LocalPC and Webserver are not connected - Jumpserver has to be used. Jumpserver doesn't have access to the Webpage on Webserver I want…
eye
  • 1
  • 2
1 2 3
13 14