ASM 1 Security Part 3.docx - SECURITY ASSIGNMENT 1(PART 3...

This preview shows page 1 - 5 out of 7 pages.

SECURITY ASSIGNMENT 1 (PART 3) STUDENT: LE BINH MINH CLASS: GCD0805 STUDENT ID: GCD191002 MENTOR: TRAN TRONG MINH
1. IMPLEMENTING A DMZ, STATIC IP AND NAT IN A NETWORK TO IMPROVE NETWORK SECURITY A. DEMILITARIZED ZONE (DMZ) a) WHAT IS DMZ?
Figure 1: DMZ Diagram in Network b) DMZ DESIGN AND ARCHITECTURE DMZ is an extended network contained within the internal network. The DMZ can be designed in many ways from a single firewall architecture, dual firewall architecture, and multiple firewall combinations. Today, DMZ uses a dual firewall architecture to develop other complex systems on the network easily. Single Firewall Architecture: The DMZ with a single firewall architecture requires three or more network interfaces. The first is the interface from the Internet to the firewall. The second is the interface that constitutes the local network, and the third is forwarded to the DMZ.
Figure 2: Single Firewall DMZ Architecture Dual Firewall Architecture: DMZ with firewall structure between network zones. The first Firewall between the Internet and to Firewall and the second between the Firewall to the local network. Hackers are required to pass two firewalls to access

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture