My recommendation would be to implement a fourth firewall zone, using a separate network interface card (NIC) on the firewall or virtual LAN (vLAN) technology. This fourth zone -- perhaps call it the "internal DMZ" -- would be for services that process private data and should be restricted to internal users only.
Dig deeper on DMZ Setup and Configuration
Related Q&A from Mike Chapple, Enterprise Compliance
PCI DSS requirement 6.6 demands application security compliance through one of two options: an application firewall or a code review. Expert Mike ...continue reading
Are HIPAA-compliant hosting services a better option for compliance than a secure storage API? Expert Mike Chapple analyzes.continue reading
Social media compliance is not typically considered a big issue for companies, but expert Mike Chapple explains why it should be.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.