RE: Three homed DMZ
- From: "Thomas W. Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Thu, 23 Aug 2001 09:57:32 -0500
Hi Aleksander,
This kind of setup isn't a DMZ, because it doesn't create a security
zone outside of the internal network. Traffic from the "DMZ" you have
here can freely move between the internal network and the "DMZ".
You have to use public addresses for a trihomed DMZ config.
HTH,
Tom
www.isaserver.org/shinder
Thomas W Shinder, M.D., MCSE, MCT
-----Original Message-----
From: Aleksander França Honma [mailto:aleks@xxxxxxxxxxxxxx]
Sent: Thursday, August 23, 2001 9:52 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Three homed DMZ
http://www.ISAserver.org
I have already asked this once but it still isn't clear for me, sorry!
Are there any benifits of using a public IP addresses on the DMZ? Or is
it a
rule?
Would it be wrong using the following way?
Internal LAN ---- ISA FIREWALL/PROXY ---- INTERNET
192.168.1.0/24 | Public IPs
|
DMZ
192.168.0.0/24
Thanks once again,
Aleksander França Honma
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
