Educause Security Discussion mailing list archives

Re: Closed Network Implementation?

From: Mike Iglesias <iglesias () UCI EDU>
Date: Fri, 8 Mar 2013 12:56:01 -0800

On 03/08/2013 11:27 AM, Michael Sinatra wrote:

Doing it on smaller network segments also allows you to separate research
traffic from administrative traffic and it makes it easier to build a Science
DMZ (http://fasterdata.es.net/science-dmz/).  You can delegate administrative
control of firewall contexts or virtual firewalls to departments, giving them
the responsibility--and authority--to further secure their systems.


We're working on implementing a Science DMZ, which will be "outside" the
firewall.  There's a grant you can apply for to help defray the cost of
implenting it, which we plan on doing.  I believe the grant is thru NSF.


-- 
Mike Iglesias                          Email:       iglesias () uci edu
University of California, Irvine       phone:       949-824-6926
Office of Information Technology       FAX:         949-824-2270

Current thread:

Re: Closed Network Implementation?, (continued)
- - - Re: Closed Network Implementation? Barron Hulver (Mar 07)
    - Re: Closed Network Implementation? Leo Song (Mar 08)
    - Re: Closed Network Implementation? Rick Coloccia (Mar 08)
    - Re: Closed Network Implementation? Harry Hoffman (Mar 08)
    - Re: Closed Network Implementation? Rick Coloccia (Mar 08)
- Re: Closed Network Implementation? Mike Iglesias (Mar 08)
  - Re: Closed Network Implementation? Harry Hoffman (Mar 08)
    - Re: Closed Network Implementation? Willis Marti (Mar 08)
    - Re: Closed Network Implementation? Mike Iglesias (Mar 08)
    - Re: Closed Network Implementation? Michael Sinatra (Mar 08)
    - Re: Closed Network Implementation? Mike Iglesias (Mar 08)
    - Re: Closed Network Implementation? Michael Sinatra (Mar 08)