Encyclopedia > Demilitarized zone (computing)

  Article Content

Demilitarized zone (computing)

In terms of computer security a demilitarised zone (DMZ) is a network area that sits between an organisation's internal network and an external network, usually the Internet.

Firewalls protect both the interface between the internal network and the DMZ and the DMZ and the Internet. Typically an organisation's public web servers, public email servers, web proxy servers etc. would be located in the DMZ. This enhances security in two ways. Firstly if unauthorised access to one of the servers in the DMZ is gained, this does not give access to the corporate network. Secondly, by directing all Internet traffic through proxy servers in the DMZ it is possible to prevent direct access to the Internet from the organisation's internal network. This allows tight control of both inbound and outbound traffic, allowing implementation of policies to prevent the download of software, images etc. into the organisation, and to prevent the upload of certain types of file for security reasons.

All Wikipedia text is available under the terms of the GNU Free Documentation License

  Search Encyclopedia

Search over one million articles, find something about almost anything!
  Featured Article
North Lindenhurst, New York

... and 7.6% have someone living alone who is 65 years of age or older. The average household size is 3.06 and the average family size is 3.44. In the town the ...

This page was created in 59.8 ms