When we consider a firewall , there are several important interfaces can identified such as external interface , trusted interfaces and optional interfaces. We can configure any other port also as an external port. Every Firewall has maximum number of external interfaces which can support.
LAN (Local Area Network)
After we configure our firewall in our infrastructure, we can identify each and every interface according to the network. Local Area Network which we known as LAN arm , directly connect with the core switch in the network. All the users will connect to the local area and there are few servers also can be install in this zone.
DMZ (Demilitarized Zone)
Any service need to offer to outsiders or external users , the better way is to implement relevant servers separately to the Local Area Network because of the security. Therefore we can implement them in DMZ and it will lead to network security. Following services should be offer to external users.
1. Web service
2. E-mail Service
3. FTP service
4. VoIP service
servers relevant to above services, should be implemented in DMZ to achieve the secure network.
EXTERNAL
External interface must be connected with this port. This might be a lease line or else a ADSL line.
No comments:
Post a Comment