Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [dmz]

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

In computer security, a DMZ, or demilitarized zone is a physical or logical subnetwork that contains and exposes an organization's external services to a larger untrusted network, usually the Internet. The term is normally referred to as a DMZ by information technology professionals. It is sometimes referred to as a perimeter network.

The purpose of a DMZ is to add an additional layer of security to an organization's local area network (LAN); an external attacker only has access to equipment in the DMZ, rather than any other part of the network.

204 questions
0
votes
2 answers

Connecting from DMZ machine to Server 2003 on a domain?

We have a web server on a DMZ that needs to read/write to a single file location on our Server 2003 Domain. What is the best way to do this?
Beep beep
  • 1,833
  • 2
  • 18
  • 33
0
votes
1 answer

port forwarding to server outside dmz from one inside dmz

we are running mysql replication between a server outside dmz and one inside dmz, for this we need port forwarding. We have had it set up, but it recently stopped working. Just before we added a rule (rule number 01500) that would allow traffic for…
CodeReaper
  • 234
  • 2
  • 9
0
votes
2 answers

How to share a SAN(Storage Area Network) Environment between servers in DMZ and a internal Network?

My current (imaginary) setup has a DMZ with two servers and an internal network with two more servers Servers in DMZ- Webserver (Company Website), Proxy Servers in the internal Network - Messaging (Exchange) and Authentication and Domain Services…
Vivek Bernard
  • 143
  • 9
0
votes
1 answer

Sonicwall NSA 240, Configured for LAN and DMZ, X0 and X2 on same switch - ping issues

Our Sonicwall vendor supplied and networked the NSA240 when we required a DMZ in our infrastructure. This was configured and appeared correct although VPN users periodically dropped DNS and Terminal Services. The vendor could not resolve and so…
Klaptrap
  • 157
  • 12
0
votes
1 answer

Securing internal data accessed by a website on the big, bad internet

A close relative of this question on Stack Overflow: When you have a web site in your DMZ that needs to access production data stored on an internal DB, what strategies do you recommend using to lower the risks that come from accessing live data? Is…
aehiilrs
  • 103
  • 2
0
votes
2 answers

Reverse Proxy - Can I use one IP for multiple hosts?

I would like to setup an internal box that all all external traffic gets forwarded to, and then onto the relevant boxes in-house. I would like to know the following: If I have two servers in-house, mail.domainA.com and mail.domainB.com can a reverse…
Mister IT Guru
  • 1,178
  • 3
  • 15
  • 35
0
votes
0 answers

sssd password update not working, AD behind firewall

I have a centos server in a DMZ joined to my AD with sssd, minimum ports are open in the corporate firewall to allow the authentication but if the password of a user is updated on the AD, the Centos server will no update it's cache and still work…
mickg
  • 1
0
votes
1 answer

New router messed up server 2003 setup

We were sent a new 2wire router today configured it as best we can to match the old bt voyager. We've also got X static IP's. We've manage to get our webserver on one of the new IP's public facing. then we use a hardware firewall which is in a DMZ…
Rhys Evans
  • 919
  • 8
  • 23
0
votes
1 answer

How to add vpn to network with dmz

Consider the diagram on attached pic, which shows a typical DMZ Web server configuration. How can this architecture be upgraded by appropriately adding a VPN (Virtual Private Network) for dedicated users? Pic showing: Typical DMZ Web Server…
Dark angel
  • 1
  • 1
0
votes
0 answers

Is it secure? Owncloud in DMZ and refer to internal fileserver

Is this a secure setup? Having an (linux based) Owncloud Server, with Let's-Encrypt SSL Certificate. This server provides shares to the clients, which are SMB connections to an internal File Server The connection is as follows: DNS Entry --> points…
Dave
  • 73
  • 6
0
votes
1 answer

Domain joined WAP in DMZ

To date, I've only ever used ADFS for claims aware applications. I'm now looking at using it for some non-claims aware applications. I've read that the WAP server must be domain joined for this so that it can perform Kerberos constrained…
Steve
  • 1
  • 1
0
votes
1 answer

Exchange 2016 ActiveSync in Edge Server

Dears, We currently have an Exchange 2016 Edge server located in our DMZ and it is handling all our inbound and outbound emails. I noticed that there is no Activesync service/role inside Edge server. I can only see it inside our internal mailboxes…
Aboodnet
  • 63
  • 5
0
votes
1 answer

SQL Server Linked Server readonly as security measure

I've got a configuration with to separate VLANs. In one of te VLANs, a Microsoft SQL server is running and doing it's thing. I'd like to read (and only read) data from this server from the second VLAN. My solution is to create a DMZ and run a new…
Supergrover
  • 1
0
votes
1 answer

How do servers in the DMZ of a network communicate with internal servers, i.e. back-end servers that handle data processing?

I am bootstrapping a startup and I'm having some difficulty conceptually with figuring out, how a front-end server in the network DMZ is supposed to communicate with my internal back-end servers that handle business logic and data processing. I have…
Codefun64
  • 103
  • 3
0
votes
1 answer

One IP address does not respond to ping

Ok so here's the situation: I have a DMZ subnet, x.x.x.x, and this IP address( x.x.x.63 | 255.255.255.0 | gateway x.x.x.1) fails every ping request by any other device in the network but still works and navigates. This is the network configuration:…
Cema Xeg
  • 1
  • 2
1 2 3
13
14