Ask the Expert

How to configure and implement a DMZ

What are the constraints of setting up a DMZ and what are the basic appliances needed?

    Requires Free Membership to View

DMZs (demilitarized zones) are the network equivalent of neutral ground. They provide an isolated network segment for public-facing services, such as Web and mail servers. The private side of your network is protected from these servers, as their public accessibility makes them more vulnerable to compromise.

The standard approach for creating a DMZ involves the use of a firewall with three network interfaces. For more information and an illustration, read Choosing the Right Firewall Topology.


  • Visit our resource center for news, tips and expert advice on how to configure a DMZ to prevent unwanted external access to your network.

This was first published in July 2006

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: