Security Basics mailing list archives
RE: Placing Test Server in DMZ
From: "David Gillett" <gillettdavid () fhda edu>
Date: Thu, 19 Mar 2009 17:38:27 -0700
What if we have a test server that requires VPN connection to external vendor. is it advisable to put it in DMZ (since DMZ is should only be for production servers), or better to keep it inside the network ? Please support your views with evidences if possible
Who ever said the DMZ was only for production servers? It's for servers that need to be able to accept inbound connections from the Internet. That VPN connection FROM the external vendor qualifies. Far better it should be in the DMZ than that you let that traffic -- or something spoofing to look like it! -- into a trusted portion or your secured network.... David Gillett ------------------------------------------------------------------------ This list is sponsored by: InfoSec Institute Find the source of cybercrime! Almost every crime today involves a computer or mobile device. Learn how to become a Computer Forensics Examiner in InfoSec Institute's hands-on Computer Forensics Course. Up to three industry recognized certs available, online computer forensics training available. http://www.infosecinstitute.com/courses/computer_forensics_training.html ------------------------------------------------------------------------
Current thread:
- Placing Test Server in DMZ ahgaber_rehan (Mar 19)
- RE: Placing Test Server in DMZ Craig S. Wright (Mar 19)
- RE: Placing Test Server in DMZ David Gillett (Mar 20)
- Re: Placing Test Server in DMZ Ansgar Wiechers (Mar 24)