<DIV id=RTEContent>Thank you Lee, I have been following this discussion and I appreciate you giving me a better understanding of DMZ.<BR><BR><B><I>Lee <leeh@csi-rics.com></I></B> wrote: <BLOCKQUOTE class=replbq style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff 2px solid">First, simply put, a DMZ is an open unrestricted port forwarder. You use <BR>a DMZ to open yourself to incoming requests as required by the type of <BR>server in use. Generally a web server is on a DMZ for ease of access. I <BR>run a web server on a DMZ so that I can allow and deny access directly <BR>on the server and not forward specific ports through the firewall.<BR><BR>Second, I find that being laughed at is often a sign of ignorance of the <BR>one doing the laughing. Before you judge something like a firewall you <BR>need to know a few things. What are you trying to protect? Are you <BR>already a target? Do you plan to store sensitive data on an otherwise <BR>public server? If so then get
a good hardware firewall. Another thing to <BR>understand is how malicious access is gained. I have no figures to quote <BR>but many holes are opened not by low grade firewalls. But by end-users. <BR>If it looks suspicious don't click on, download or install it. Many <BR>built-in (router) firewalls offer little more than Port Blocking, <BR>packet Filtering, basic DOS protection and a few others. And much of the <BR>time this is all you need. Below is a good place to start when trying to <BR>understand these things...<BR><BR>http://www.howstuffworks.com/firewall.htm<BR><BR>afan@afan.net wrote:<BR><BR>> Hi,<BR>> I just had a talk about my home network and my web server at home and <BR>> people I talked to confused me about couple things.<BR>> First, one said that setting up web server at home and NOT USING DMZ <BR>> is making a hole in my network and security system. He said that I <BR>> HAVE to use DMZ.<BR>> On my modem's setting page though I found that I have
to turn DMZ on <BR>> just in case I make server for special needs, like gaming server or <BR>> video conferencing.<BR>> Do I really NEED DMZ turned "On"? My opinion is that I don't need it <BR>> for web server at home.<BR>><BR>> Second, other guy was almost laughing at me when I told him that ONLY <BR>> firewalls I use in home network are modem's and router's firewalls (I <BR>> have Web server on SuSE 9.2 and I have two Windows and one Mac <BR>> computer in network). He said that these are something like low-level, <BR>> low-secure firewalls and that I have to have something good!.<BR>> When I started using hi speed Internet access (first cable then DSL), <BR>> and I talked to people about firewalls, all of them told me the same: <BR>> my computers behind modem's and router's firewalls are REALLY safe. I <BR>> had some period of time Zone Alarm, but after one guy compared it as <BR>> "Having 2 spare wheels on car - it's better then one,
but chances to <BR>> need them both are so small and not worth to carry 2nd one" - I took <BR>> it off.<BR>> What do you think?<BR>><BR>> -afan<BR>><BR>><BR>>------------------------------------------------------------------------<BR>><BR>>_______________________________________________<BR>>Cialug mailing list<BR>>Cialug@cialug.org<BR>>http://cialug.org/mailman/listinfo/cialug<BR>> <BR>><BR><BR>_______________________________________________<BR>Cialug mailing list<BR>Cialug@cialug.org<BR>http://cialug.org/mailman/listinfo/cialug<BR></BLOCKQUOTE><BR></DIV><BR><BR>David Stout<br>BTS Billing Team<br>Data Repository & Reports<p>
                <hr size=1> <B>Yahoo! Personals</B><BR>
Single? There's someone we'd like you to meet.<BR>
Lots of someones, actually. <a href="http://us.rd.yahoo.com/evt=36108/*http://personals.yahoo.com
">Try Yahoo! Personals</a>