This discussion is becoming circular. Buck, you are essentially saying the same thing as Rodolfo: DMZs are where you stick internet-available servers. Any border firewalls ahead of DMZs are usually there for portforwarding purposes.
I had read Buck's comments as "Machines in the DMZ are not protected by any firewall at all, and the Internet has free and open access to them." Perhaps I misread.
-- Rodolfo J. Paiz rpaiz@xxxxxxxxxxxxxx
-- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
