Abstract image of a woman sitting on books and studying on a laptop

Dmz

Download as PPT, PDF
أحلام انصارى, profile picture
أحلام انصارى

The document discusses demilitarized zones (DMZs) in computer networks. A DMZ is a small subnetwork located between a company's private network and the outside public network. It contains devices like web, FTP, and email servers that are accessible to internet traffic but isolated from the internal network. DMZs provide enhanced security by separating internal and external networks, and only allowing specific services that need to be accessed from the outside. The document outlines common DMZ architectures, security considerations, and the types of servers and services typically located in a DMZ.

1 of 19
Downloaded 480 times
1
2
3
4
Most read
5
6
7
8
9
10
11
12
13
Most read
14
15
16
17
18
Most read
19
DMZ Level of defence in private network Shaikh Fozia Shahbaz khan
Learning Objectives  Definition  Perimeter Security Topologies  Architecture  Security Firewalls  DMZ host  Services  Goals  Tunneling in network security  Conclusion
DMZ  Portion of the network between the border router and the non-public computing services
Contd.  In computer networks, a DMZ (demilitarized zone) is a computer host or small network inserted as a "neutral zone" between a company's private network and the outside public network.
Perimeter Security Topologies  Any network that is connected (directly or indirectly) to your organization, but is not controlled by your organization, represents a risk..  Include demilitarized zones (DMZs) extranets, and intranets continued…
Trusted Networks
Semi-Trusted Networks
Untrusted Networks
Unknown Networks
Architecture Single firewall
Dual firewall
Network Address Translation (NAT)  Internet standard that enables a LAN to use one set of IP addresses for internal traffic and a second set for external traffic  Provides a type of firewall by hiding internal IP addresses  Enables a company to use more internal IP addresses.
Creating and Developing Your Security Design  Control secrets - What knowledge would enable someone to circumvent your system?  Know your weaknesses and how it can be exploited  Limit the scope of access - create appropriate barriers in your system so that if intruders access one part of the system, they do not automatically have access to the rest of the system.  Understand your environment - Auditing tools can help you detect those unusual events.  Limit your trust: people, software and hardware
DMZ Security Firewalls  Firewall functions  Interaction of firewalls with data
DMZ host
Services  Typically contains devices accessible to Internet traffic  Web (HTTP) servers  FTP servers  SMTP (e-mail) servers  DNS servers
DMZ Design Goals  Filtering DMZ traffic would identify  traffic coming in from the DMZ interface of the firewall or  router that appears to have a source IP address on a network other the DMZ network number (spoofed traffic).  the firewall or router should be configured to initiate a log message or rule alert to notify administrator
Tunneling  Enables a network to securely send its data through untrusted/shared network infrastructure  Encrypts and encapsulates a network protocol within packets carried by second network  Replacing WAN links because of security and low cost  An option for most IP connectivity requirements
CONCLUSION

More Related Content

PPTX
Network Security ppt
SAIKAT BISWAS
 
PDF
Standar Keselamatan Berkendara
National Standardization Agency of Indonesia
 
PPTX
Osi model vs TCP/IP
Mannu Khani
 
PPTX
Hash Function
ssuserdfb2da
 
PDF
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
PPTX
Zero Trust
Boaz Shunami
 
PDF
LAPORAN PROJEK AKHIR
diddy98
 
PDF
Nikto
Sorina Chirilă
 
Network Security ppt
SAIKAT BISWAS
 
Standar Keselamatan Berkendara
National Standardization Agency of Indonesia
 
Osi model vs TCP/IP
Mannu Khani
 
Hash Function
ssuserdfb2da
 
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
Zero Trust
Boaz Shunami
 
LAPORAN PROJEK AKHIR
diddy98
 
Nikto
Sorina Chirilă
 

What's hot (20)

PPSX
Security policies
Nishant Pahad
 
PPT
Basics of Information System Security
chauhankapil
 
PPTX
Network security
Estiak Khan
 
PPTX
Firewall DMZ Zone
NetProtocol Xpert
 
PDF
Network Security Presentation
Allan Pratt MBA
 
PPTX
Intrusion detection and prevention system
Nikhil Raj
 
PPTX
Denial of service
garishma bhatia
 
PPTX
Intrusion prevention system(ips)
Papun Papun
 
PPT
Information Security Policies and Standards
Directorate of Information Security | Ditjen Aptika
 
PPT
Intrusion Detection Systems and Intrusion Prevention Systems
Cleverence Kombe
 
PPTX
Types of attacks
Vivek Gandhi
 
PDF
Application Security | Application Security Tutorial | Cyber Security Certifi...
Edureka!
 
PPTX
Cia security model
Imran Ahmed
 
PPTX
Network security
quest university nawabshah
 
PPTX
Types of cyber attacks
krishh sivakrishna
 
PPTX
Firewall in Network Security
lalithambiga kamaraj
 
PPTX
Network security (vulnerabilities, threats, and attacks)
Fabiha Shahzad
 
PPT
IDS and IPS
Santosh Khadsare
 
PPT
Introduction to Cyber Security
Stephen Lahanas
 
PPT
Symmetric & Asymmetric Cryptography
chauhankapil
 
Security policies
Nishant Pahad
 
Basics of Information System Security
chauhankapil
 
Network security
Estiak Khan
 
Firewall DMZ Zone
NetProtocol Xpert
 
Network Security Presentation
Allan Pratt MBA
 
Intrusion detection and prevention system
Nikhil Raj
 
Denial of service
garishma bhatia
 
Intrusion prevention system(ips)
Papun Papun
 
Information Security Policies and Standards
Directorate of Information Security | Ditjen Aptika
 
Intrusion Detection Systems and Intrusion Prevention Systems
Cleverence Kombe
 
Types of attacks
Vivek Gandhi
 
Application Security | Application Security Tutorial | Cyber Security Certifi...
Edureka!
 
Cia security model
Imran Ahmed
 
Network security
quest university nawabshah
 
Types of cyber attacks
krishh sivakrishna
 
Firewall in Network Security
lalithambiga kamaraj
 
Network security (vulnerabilities, threats, and attacks)
Fabiha Shahzad
 
IDS and IPS
Santosh Khadsare
 
Introduction to Cyber Security
Stephen Lahanas
 
Symmetric & Asymmetric Cryptography
chauhankapil
 
Ad

Viewers also liked (20)

PPT
Dmz
toby jesse
 
ODP
What is a VLAN and DMZ
Avradeep Bhattacharya
 
PPTX
Firewall presentation
Amandeep Kaur
 
PPT
Network Security
phanleson
 
PPT
Digital certificates
Sheetal Verma
 
PPT
Firewall
Amuthavalli Nachiyar
 
PPT
Vpn presentation
stolentears
 
PPTX
Masters thesis presentation
Celestino Pempe
 
PPT
Lecture 6
Education
 
PDF
Dmz - Hedi Magroun - Nafta - 2009
Hedi Magroun
 
PDF
How to Build a B2B Website
DMZ Interactive
 
PPT
Zone Based Policy Firewall
pitt2k
 
PDF
Dmz aa aioug
aioughydchapter
 
PDF
Ethical Hacking & Penetration Testing
Won Ju Jub
 
PPTX
network security, group policy and firewalls
Sapna Kumari
 
PPT
Digital Certificate
Sumant Diwakar
 
DOCX
Pgp
Abhishek Kesharwani
 
PDF
Vulnerability Assessment and Penetration Testing Report
Rishabh Upadhyay
 
PPTX
Introduction to SSH & PGP
Sarang Ananda Rao
 
PPT
Pretty good privacy
Pushkar Dutt
 
Dmz
toby jesse
 
What is a VLAN and DMZ
Avradeep Bhattacharya
 
Firewall presentation
Amandeep Kaur
 
Network Security
phanleson
 
Digital certificates
Sheetal Verma
 
Firewall
Amuthavalli Nachiyar
 
Vpn presentation
stolentears
 
Masters thesis presentation
Celestino Pempe
 
Lecture 6
Education
 
Dmz - Hedi Magroun - Nafta - 2009
Hedi Magroun
 
How to Build a B2B Website
DMZ Interactive
 
Zone Based Policy Firewall
pitt2k
 
Dmz aa aioug
aioughydchapter
 
Ethical Hacking & Penetration Testing
Won Ju Jub
 
network security, group policy and firewalls
Sapna Kumari
 
Digital Certificate
Sumant Diwakar
 
Pgp
Abhishek Kesharwani
 
Vulnerability Assessment and Penetration Testing Report
Rishabh Upadhyay
 
Introduction to SSH & PGP
Sarang Ananda Rao
 
Pretty good privacy
Pushkar Dutt
 
Ad

Similar to Dmz (20)

PDF
Ch18 Internet Security
phanleson
 
PDF
ClubHack Magazine issue 26 March 2012
ClubHack
 
PPTX
Chapter_1_Introduction to Network Security-1.pptx
mmmmoh35
 
PPTX
Cyber security tutorial2
sweta dargad
 
PPT
Firewall protection
VC Infotech
 
PPTX
Network security
Sidiq Dwi Laksana
 
PPT
Firewall Architecture
Yovan Chandel
 
PDF
IBM zEnterprise System - Network Security
IBM India Smarter Computing
 
PDF
IBM zEnterprise System - Network Security
IBM India Smarter Computing
 
PPTX
UNIT-4 network information security ID system
agasyabutolia
 
PDF
Tivoli firewall magic redp0227
Banking at Ho Chi Minh city
 
PPTX
Ecommerce final ppt
priyanka Garg
 
PPTX
Firewall & DMZ.pptx
karthikvcyber
 
PPT
Firewall
lmbriscoe
 
PPTX
محمد
mohammed-1212
 
PPTX
Demilitarized Zone (DMZ) in computer networking
ssuser7319f8
 
PPT
Day4
Jai4uk
 
DOCX
Firewall configuration
Nutan Kumar Panda
 
PPSX
Firewall & its Services
Navdeep Dhingra
 
PPTX
Section c group2_firewall_ final
pg13tarun_g
 
Ch18 Internet Security
phanleson
 
ClubHack Magazine issue 26 March 2012
ClubHack
 
Chapter_1_Introduction to Network Security-1.pptx
mmmmoh35
 
Cyber security tutorial2
sweta dargad
 
Firewall protection
VC Infotech
 
Network security
Sidiq Dwi Laksana
 
Firewall Architecture
Yovan Chandel
 
IBM zEnterprise System - Network Security
IBM India Smarter Computing
 
IBM zEnterprise System - Network Security
IBM India Smarter Computing
 
UNIT-4 network information security ID system
agasyabutolia
 
Tivoli firewall magic redp0227
Banking at Ho Chi Minh city
 
Ecommerce final ppt
priyanka Garg
 
Firewall & DMZ.pptx
karthikvcyber
 
Firewall
lmbriscoe
 
محمد
mohammed-1212
 
Demilitarized Zone (DMZ) in computer networking
ssuser7319f8
 
Day4
Jai4uk
 
Firewall configuration
Nutan Kumar Panda
 
Firewall & its Services
Navdeep Dhingra
 
Section c group2_firewall_ final
pg13tarun_g
 

More from أحلام انصارى (20)

PPTX
An Enhanced Independent Component-Based Human Facial Expression Recognition ...
أحلام انصارى
 
PPTX
Intention recognition for dynamic role exchange in haptic
أحلام انصارى
 
PPT
Noise Adaptive Training for Robust Automatic Speech Recognition
أحلام انصارى
 
PPTX
Human behaviour analysis based on New motion descriptor
أحلام انصارى
 
PPTX
Recognizing Human-Object Interactions in Still Images by Modeling the Mutual ...
أحلام انصارى
 
PDF
Multimodal Biometric Human Recognition for Perceptual Human–Computer Interaction
أحلام انصارى
 
PPTX
Security issues in cloud database
أحلام انصارى
 
PPTX
Html5 offers 5 times better ways to hijack the website
أحلام انصارى
 
PPTX
Honey pot in cloud computing
أحلام انصارى
 
PPT
grid authentication
أحلام انصارى
 
PPTX
Security As A Service In Cloud(SECaaS)
أحلام انصارى
 
PPT
Dos presentation by ahlam shakeel
أحلام انصارى
 
PPTX
Soa
أحلام انصارى
 
PPTX
Rbac
أحلام انصارى
 
PPTX
Password craking techniques
أحلام انصارى
 
PPT
Operating system vulnerability and control
أحلام انصارى
 
PPT
Network ssecurity toolkit
أحلام انصارى
 
PPTX
Image forgery and security
أحلام انصارى
 
PPTX
Image based authentication
أحلام انصارى
 
PPT
Cryptography
أحلام انصارى
 
An Enhanced Independent Component-Based Human Facial Expression Recognition ...
أحلام انصارى
 
Intention recognition for dynamic role exchange in haptic
أحلام انصارى
 
Noise Adaptive Training for Robust Automatic Speech Recognition
أحلام انصارى
 
Human behaviour analysis based on New motion descriptor
أحلام انصارى
 
Recognizing Human-Object Interactions in Still Images by Modeling the Mutual ...
أحلام انصارى
 
Multimodal Biometric Human Recognition for Perceptual Human–Computer Interaction
أحلام انصارى
 
Security issues in cloud database
أحلام انصارى
 
Html5 offers 5 times better ways to hijack the website
أحلام انصارى
 
Honey pot in cloud computing
أحلام انصارى
 
grid authentication
أحلام انصارى
 
Security As A Service In Cloud(SECaaS)
أحلام انصارى
 
Dos presentation by ahlam shakeel
أحلام انصارى
 
Soa
أحلام انصارى
 
Rbac
أحلام انصارى
 
Password craking techniques
أحلام انصارى
 
Operating system vulnerability and control
أحلام انصارى
 
Network ssecurity toolkit
أحلام انصارى
 
Image forgery and security
أحلام انصارى
 
Image based authentication
أحلام انصارى
 
Cryptography
أحلام انصارى
 

Dmz

  • 1. DMZ Level of defence in private network Shaikh Fozia Shahbaz khan
  • 2. Learning Objectives  Definition  Perimeter Security Topologies  Architecture  Security Firewalls  DMZ host  Services  Goals  Tunneling in network security  Conclusion
  • 3. DMZ  Portion of the network between the border router and the non-public computing services
  • 4. Contd.  In computer networks, a DMZ (demilitarized zone) is a computer host or small network inserted as a "neutral zone" between a company's private network and the outside public network.
  • 5. Perimeter Security Topologies  Any network that is connected (directly or indirectly) to your organization, but is not controlled by your organization, represents a risk..  Include demilitarized zones (DMZs) extranets, and intranets continued…
  • 12. Network Address Translation (NAT)  Internet standard that enables a LAN to use one set of IP addresses for internal traffic and a second set for external traffic  Provides a type of firewall by hiding internal IP addresses  Enables a company to use more internal IP addresses.
  • 13. Creating and Developing Your Security Design  Control secrets - What knowledge would enable someone to circumvent your system?  Know your weaknesses and how it can be exploited  Limit the scope of access - create appropriate barriers in your system so that if intruders access one part of the system, they do not automatically have access to the rest of the system.  Understand your environment - Auditing tools can help you detect those unusual events.  Limit your trust: people, software and hardware
  • 14. DMZ Security Firewalls  Firewall functions  Interaction of firewalls with data
  • 16. Services  Typically contains devices accessible to Internet traffic  Web (HTTP) servers  FTP servers  SMTP (e-mail) servers  DNS servers
  • 17. DMZ Design Goals  Filtering DMZ traffic would identify  traffic coming in from the DMZ interface of the firewall or  router that appears to have a source IP address on a network other the DMZ network number (spoofed traffic).  the firewall or router should be configured to initiate a log message or rule alert to notify administrator
  • 18. Tunneling  Enables a network to securely send its data through untrusted/shared network infrastructure  Encrypts and encapsulates a network protocol within packets carried by second network  Replacing WAN links because of security and low cost  An option for most IP connectivity requirements