Thanks for all the replies! Now it's more than clear! -----Original Message----- From: Thomas W. Shinder [mailto:tshinder@xxxxxxxxxxxxxxxxxx] Sent: quinta-feira, 23 de agosto de 2001 11:58 To: [ISAserver.org Discussion List] Subject: [isalist] RE: Three homed DMZ http://www.ISAserver.org Hi Aleksander, This kind of setup isn't a DMZ, because it doesn't create a security zone outside of the internal network. Traffic from the "DMZ" you have here can freely move between the internal network and the "DMZ". You have to use public addresses for a trihomed DMZ config. HTH, Tom www.isaserver.org/shinder Thomas W Shinder, M.D., MCSE, MCT -----Original Message----- From: Aleksander França Honma [mailto:aleks@xxxxxxxxxxxxxx] Sent: Thursday, August 23, 2001 9:52 AM To: [ISAserver.org Discussion List] Subject: [isalist] Three homed DMZ http://www.ISAserver.org I have already asked this once but it still isn't clear for me, sorry! Are there any benifits of using a public IP addresses on the DMZ? Or is it a rule? Would it be wrong using the following way? Internal LAN ---- ISA FIREWALL/PROXY ---- INTERNET 192.168.1.0/24 | Public IPs | DMZ 192.168.0.0/24 Thanks once again, Aleksander França Honma ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: Aleks@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')