Firewall Wizards mailing list archives
RE: DMZ, defined.
From: jwalsh () internoded com
Date: Fri, 29 Jan 1999 08:50:43 -0500
I'm new to this firewall stuff, but I'd like to offer my opinion anyway. In my world, a "firewall" should begin at the first point of entry, the router. While this may not apply to all, port/packet filtering is the first layer of protection. From what I've heard so far, isn't that kind of what the DMZ is? No matter where you put machines, you should know what services or ports they will be "serving", so doesn't it make sense to limit the access to only those ports/services? If you buy this, then a DMZ could be defined as a packet filtered zone, which describes both the third nic and "pre-firewall" hub concepts. Calling it a "pfz" would give the marketing types a simple concept to grasp and spell:-jmw
Current thread:
- RE: DMZ, defined., (continued)
- RE: DMZ, defined. David LeBlanc (Jan 27)
- Re: DMZ, defined. Jon E. Hetty (Jan 21)
- RE: DMZ, defined. graham, randy (Jan 26)
- RE: DMZ, defined. Paul D. Robertson (Jan 26)
- RE: DMZ, defined. Ken_Stephens (Jan 26)
- RE: DMZ, defined. Chris Crozier (Jan 27)
- Re: DMZ, defined. Steve Bellovin (Jan 27)
- RE: DMZ, defined. Glenn Larsson (Jan 28)
- RE: DMZ, defined. dreamwvr (Jan 29)
- RE: DMZ, defined. Stefan Jon Silverman (Jan 29)
- RE: DMZ, defined. jwalsh (Jan 29)