different DMZs which is better?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hey guys Im deciding how I want to implement a DMZ for my company can anyone
tell me the pros and cons of my DMZs below? should I got with a routable
hosts in my DMZ and just filter out any port I don't want open or just port
forward over certain ports and use IP alias?

Thanks,
Mike

P.S excuse the art below I know it sucks.


                                    cisco
                                        |
                                        |
                                        |
                                     eth0
DMZ inet IPs(eth1)---Netfilter----private LAN (eth2)



                                         cisco
                                             |
                                             |
                                             |
                                          eth0
DMZ private IPs(eth1)---Netfilter----private LAN (eth2)
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux