Building a standalone firewall
Posted on 6 Oct 2004 at 16:40
Instead, you can create an area called the DMZ. This is a separate LAN that's prevented from accessing the main LAN by the firewall (see main image - click to enlarge). Users on your network and on the Internet are allowed to view systems on the DMZ, but the DMZ systems aren't allowed to browse the LAN.
Should a DMZ web server be compromised, you'll still have the hassle of working out how it happened (check the IDS log files) and of reinstalling the operating system and fixing the security hole, but at least your LAN will be safe.
In two months' time, we'll show you how to set up a web server on the DMZ, so you can host your own website without paying large fees for disk space or extra features such as PHP or SQL databases.
Author: Simon Edwards
From around the web
For more details about purchasing this feature and/or images for editorial usage, please contact Jasmine Samra on pictures@dennis.co.uk
advertisement
- Mozilla: everyone should learn a little bit of code
- Google mines social network data for semantic search
- Microsoft tweaks multi-monitor support in Windows 8
- Phone sales shrink as consumers await fresh handsets
- Nvidia warns 28nm supply problems continue
- File-fixing tools to improve uptime in Windows 8
- Mozilla: Microsoft blocking rival browsers in Windows RT
- Microsoft developing sound-based gesture control
- Dell working on Ubuntu Ultrabook for developers
- Media Center to be paid-for add-on in Windows 8
- Sony VAIO T Series Ultrabook review: first look
- Revealed: the military standards and robots HP uses to test its laptops
- Windows 8: multi-monitors and double standards?
- Why is TalkTalk's year-old porn filter suddenly big news?
- Why are laptop screens so far behind mobiles?
- HP EliteBook Folio review: first look
- The shoebox-sized all-in-one printer
- Forget the Ultrabook: here comes the HP Sleekbook
- HP Spectre XT review: first look
- Samsung Galaxy S III review: first look
advertisement
