DMZ Setup for WEb sites
Dear Experts,
want to implement DMZ server on Redhat for Web portals servers. All the External Traffic should approach to DMZ and DMZ Server should route to internal LAN to Access the web Portal .Could any one guide me the steps
want to implement DMZ server on Redhat for Web portals servers. All the External Traffic should approach to DMZ and DMZ Server should route to internal LAN to Access the web Portal .Could any one guide me the steps
David Johnson, CD
what you are contemplating is called NAT (network address translation) this can be done either via the router (no DMZ server required) or using routing and remote access in windows server (requires 2 network cards)
ASKER
Hello David,
Thanks for the reply !, Could you please say what is the difference between NAT and DMZ, Why maxi IT companies recommened for DMZ server. this just an query as i am not much aware in DMZ Zone. thank you
Thanks for the reply !, Could you please say what is the difference between NAT and DMZ, Why maxi IT companies recommened for DMZ server. this just an query as i am not much aware in DMZ Zone. thank you
ASKER
which will be the best Nat or DMZ
Depends upon your point of reference
if you setup an ip as being in the DMZ Then all traffic from outside is routed to the inside IP
Port Forwarding (NAT) forwards traffic of a specific type on a specific port to a specific port on a specified inside IP
if you setup an ip as being in the DMZ Then all traffic from outside is routed to the inside IP
Port Forwarding (NAT) forwards traffic of a specific type on a specific port to a specific port on a specified inside IP
DMZ is a setting on firewall.
It doesn't matter what kind of software or service you're using in your network, DMZ it mean that ALL ports are open and forwarded to DMZ internal address.
THis is not to secure approach. It is much smarter to get information what ports needs to be open and create rules on your firewall to forward those ports to your web server inside network.
This will save you a lot of issues with hackers.
You can accomplish DMZ with NAT in almost ANY firewalls on the market.
If you talking about some industrial firewall and not expensive, I would suggest SonicWall
It doesn't matter what kind of software or service you're using in your network, DMZ it mean that ALL ports are open and forwarded to DMZ internal address.
THis is not to secure approach. It is much smarter to get information what ports needs to be open and create rules on your firewall to forward those ports to your web server inside network.
This will save you a lot of issues with hackers.
You can accomplish DMZ with NAT in almost ANY firewalls on the market.
If you talking about some industrial firewall and not expensive, I would suggest SonicWall
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.