LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

Select Accept to consent or Reject to decline non-essential cookies for this use. You can update your choices at any time in your settings.

Start free trial Sign in

From the course: Protecting Your Network with Open-Source Software

Unlock the full course today

Join today to access over 24,700 courses taught by industry experts.

Understanding one-legged DMZ

Understanding one-legged DMZ

From the course: Protecting Your Network with Open-Source Software

Start my 1-month free trial Buy for my team

Understanding one-legged DMZ

“

- [Instructor] When opening a file port and enabling port forwarding a risk is that some internal hosts, such as web servers are now accessible on the entire internet. There's always a chance of an attacker compromising the web server. A compromised web server in the same network could infect other hosts and make them vulnerable too. DMZ is a solution to preventing this unfortunate scenario. DMZ stands for demilitarized zone. It's a buffer area between an internal network and an external network. Therefore, DMZ further separates the internal network into a publicly accessible area and a protected area off limits to public access. DMZ allows us to avoid the situation where an internal network is directly exposed to the external network. This way, a compromised host in the DMZ does not affect other hosts in another subnet and make them less vulnerable. DMZ also allows more fine-grained network traffic monitoring by further dividing an internal network and placing more security controls.…

Contents

- (Locked)
  
  Next steps
  
  37s