Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [dmz]

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

The purpose of a DMZ is to add an additional layer of security to an organization's local area network (LAN); an external attacker only has access to equipment in the DMZ, rather than any other part of the network.

204 questions
0
votes
1 answer

Access 2 Hosts from Internet on same subnet

Hi I have 2 raspberry PI in my network. And I want both of them accessibles from the internet. Right now I have a DMZ from you can access one with NO-IP setup: www.blabla.no-ip.org ----->DMZ REDIRECTION ON MY ROUTER----->192.168.1.XX Static…
kiraitachi
  • 11
  • 2
0
votes
1 answer

Port forwarding with 2 interfaces not working

I'm running debian and I've got the following network configuration: eth0 Link encap:Ethernet inet addr:192.168.16.6 Bcast:192.168.16.255 Mask:255.255.255.0 inet6 addr: fe80::204:75ff:fe9b:50e5/64 Scope:Link UP…
Liam
  • 241
  • 4
  • 10
0
votes
2 answers

How to use single public IP to access multiple application servers in SAP?

Scenario I have: Wireless D-Link Router Connected to the Internet Two IBM-Lenovo Servers Connected( Wireless/Wired) to the Router Two servers have IP addresses : 192.xxx.xxx.123 and 192.xxx.xxx.124 Both the servers have been configured as SAP…
blastermind
  • 11
  • 1
0
votes
1 answer

IIS FTP - Users Last Logon

How would you determine the last FTP logon time/date for a bunch of local user accounts on a DMZ (standalone/workgroup) server running IIS FTP? I know I could use a log aggregator and sift through it that way, but this server has been operational…
Izzy
  • 8,224
  • 2
  • 31
  • 35
0
votes
1 answer

Ubuntu server - NIC suddenly loses connectivity

I'm scratching my head. I recently configured a server with two identical Intel NICs inside a DMZ. This morning at around 8:05, I successfully SSH'd in through the internal interface (via my LAN-based PC) and had access to the outside world as well.…
dlanced
  • 247
  • 1
  • 4
  • 13
0
votes
1 answer

Can't establish a reliable VPN tunnel (ShrewSoft client / ZyWALL USG-50 firewall)

I try to setup an IPSec VPN tunnel through my firewall (ZyWall USG-50), but it doesn't work like it should. quick scheme of my installation: ME [A.B.C.D] --- **INTERNET** | | [A2.B2.C2.D2]…
Thomas N.
  • 121
  • 1
  • 6
0
votes
2 answers

SSL certs or intermediate for DMZ

I've been tasked with deploying and managing load balancers covering internal servers and DMZ servers. I have no experience with this, and this is a first for my organization as well. Balancers are up, running, legit. Currently we are using a…
rex
  • 1
  • 1
0
votes
1 answer

How can I set up a DMZ for Wireless Access?

My company uses Microsoft Windows Server 2003. Our internet connection goes through a proxy server across a WLAN to the main office. I want to set up a wireless LAN in my local network whereby unmanaged users, given the SSID and key, can log in and…
Lutherserious
0
votes
1 answer

2 NIC vs NAT for exposing server

I'm trying to virtualize some applciation using Citrix. so I have to expose the Citrix Secure Gateway to Internet (put it in DMZ). my question is which is better practice ? using 2 physical NIC, one for public IP, one for Internet private IP Using…
Yichaoz
  • 381
  • 4
  • 8
  • 20
0
votes
1 answer

LAMP server kerberos config to authenticate against a read only Windows KDC in a dmz

Background: We have a number of AD networks (domains) that are connected through VPNs and have established AD trust relationships. We have an externally hosted web server and have configured seamless authentication for any user within the trusted…
Jameel
  • 79
  • 5
0
votes
1 answer

IIS Webserver hosting intranet and public sites in DMZ

We have a webserver (VM) hosting several sites. One of the applications has a part intranet and a part public. (archiving/docflow = intranet, customer invoices = public) This webserver is currently hosted with IP (example IPs): 11.11.0.80/20 in our…
grmbl
  • 155
  • 1
  • 9
0
votes
1 answer

OpenSuSE server in demilitarized zone can still ping internal network?

I don't know much about setting up DMZ but from what I read in the OpenSUSE docs, putting a network interface in the DMZ zone allows reaching it from both external and internal networks while restricting it from reaching the internal zone itself. …
Patrick Grimard
  • 123
  • 5
0
votes
1 answer

Juniper SSG5 Firewall

I have a SSG5 firewall with some route based VPN. I have a LAN, a DMZ, an another net and WAN. How should I do to make DMZ use VPN and not LAN? I think it's a routing problem. But Source routing doesn't solve my problem. It was easier on my old…
Matthieu
  • 443
  • 4
  • 12
0
votes
2 answers

Network design vm virtualization in small office

I just recently bought a 16gb ram, Intel i7 quad core Mac mini to be used as the central point of entry to my network and am looking for advice on how to design a network suitable for a small office. My hardware consist of a couple of laptops, pc…
marlin
  • 27
  • 3
0
votes
1 answer

VMWare Workstation and network isolation

When I install VNC or some other RAT to a container in my VMWare Workstation machine box, what ways can I prevent access to my local network and other machines on my network. Is this where setting up a DMZ would come in handy? Or setup VLans? I…
Tiffany Walker
  • 6,681
  • 14
  • 56
  • 82
1 2 3
13 14