Hi I would like to introduce myself to security standards... I have a 3-way firewall filtering packets for/from internet/lan/dmz I have a few servers in the DMZ : SFTP, WEB and email... I have a DNS and DHCP in the lan zone Shoul I accept in the lan zone udp port 53 (dns) packets only for the dns server ? Where should I implant a honeypot ? in the DMZ ? What are the security standards for a firewall like that ? Thanks Eric
