Security Basics mailing list archives

RE: Placing Test Server in DMZ

From: "David Gillett" <gillettdavid () fhda edu>
Date: Thu, 19 Mar 2009 17:38:27 -0700

What if we have a test server that requires VPN connection to 
external vendor. is it advisable to put it in DMZ (since DMZ 
is should only be for production servers), or better to keep  
it inside the network ? Please support your views with 
evidences if possible


  Who ever said the DMZ was only for production servers?  It's
for servers that need to be able to accept inbound connections 
from the Internet.
  That VPN connection FROM the external vendor qualifies.  Far
better it should be in the DMZ than that you let that traffic --
or something spoofing to look like it! -- into a trusted portion
or your secured network....

David Gillett


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Find the source of cybercrime! Almost every crime today involves a computer or mobile device. Learn how to become a 
Computer Forensics Examiner in InfoSec Institute's hands-on Computer Forensics Course. Up to three industry recognized 
certs available, online computer forensics training available. 

http://www.infosecinstitute.com/courses/computer_forensics_training.html
------------------------------------------------------------------------

Current thread:

Placing Test Server in DMZ ahgaber_rehan (Mar 19)
- RE: Placing Test Server in DMZ Craig S. Wright (Mar 19)
- RE: Placing Test Server in DMZ David Gillett (Mar 20)
- Re: Placing Test Server in DMZ Ansgar Wiechers (Mar 24)