A "real" DMZ is one whose physical layout resembles demilitarized zones
in the real world. In the real world, a DMZ is some territory free
significant military fortifications between you and some hostile territory,
buffer zone. The classic real-world example of a DMZ is the North-South
Korean border. A few hundred meters of no-man's land between heavily
fortified defensive positions.
In the networking world a "real" DMZ follows the same layout,
Internet
(hostile network)
|
--------- Your network border router, that may
| be doing some firewalling.
DMZ
|
--------- Your internal border router, definately
| doing heavy firewalling.
Internal
Network
A network on a third leg off of your firewall doesn't fit this physical
DMZ analogy since you have one single set of heavy defenses protecting
both your internal network and the "service network." It is not truly
layered like a real-world DMZ.
--
Crist J. Clark crist.clark AT globalstar DOT com
Globalstar Communications (408) 933-4387
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
