Firewall Wizards mailing list archives

RE: DMZ, defined.

From: jwalsh () internoded com
Date: Fri, 29 Jan 1999 08:50:43 -0500

I'm new to this firewall stuff, but I'd like to offer my opinion anyway.
In my world, a "firewall" should begin at the first point of entry, the
router.  While this may not apply to all, port/packet filtering is the
first layer of protection.  From what I've heard so far, isn't that kind of
what the DMZ is?  No matter where you put machines, you should know what
services or ports they will be "serving", so doesn't it make sense to limit
the access to only those ports/services?  If you buy this, then a DMZ could
be defined as a packet filtered zone, which describes both the third nic
and "pre-firewall" hub concepts.  Calling it a "pfz" would give the
marketing types a simple concept to grasp and spell:-jmw

Current thread:

RE: DMZ, defined., (continued)
- - - RE: DMZ, defined. David LeBlanc (Jan 27)
- Re: DMZ, defined. Jon E. Hetty (Jan 21)
- RE: DMZ, defined. graham, randy (Jan 26)
  - RE: DMZ, defined. Paul D. Robertson (Jan 26)
- RE: DMZ, defined. Ken_Stephens (Jan 26)
  - RE: DMZ, defined. Chris Crozier (Jan 27)
- Re: DMZ, defined. Steve Bellovin (Jan 27)
- RE: DMZ, defined. Glenn Larsson (Jan 28)
  - RE: DMZ, defined. dreamwvr (Jan 29)
- RE: DMZ, defined. Stefan Jon Silverman (Jan 29)
- RE: DMZ, defined. jwalsh (Jan 29)