Re: VLANS in a DMZ - good idea?
From: Greg Hennessy (me_at_privacy.org)
Date: 01/26/05
- Next message: Duane Arnold: "Re: pcanywhere from behind router to comp behind router"
- Previous message: paulsparrow_at_telus.net: "Re: pcanywhere from behind router to comp behind router"
- In reply to: Damian: "VLANS in a DMZ - good idea?"
- Next in thread: dgunner_at_lycos.co.uk: "Re: VLANS in a DMZ - good idea?"
- Reply: dgunner_at_lycos.co.uk: "Re: VLANS in a DMZ - good idea?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 Jan 2005 17:22:44 +0000
On 26 Jan 2005 05:40:10 -0800, dgunner@lycos.co.uk (Damian) wrote:
>I am looking to setup a new perimeter network for a client and am
>contemplating the following setup as they have a spare L3 routing
>switch to hand.
>
>
>The L3 switch will have each port assigned to a separate network, one
>for mail, one for the extranet and one for the outbound proxy.
Using VLANS to provide logical and physical seperation in a DMZ(s) is an
excellent idea as long as all the configured VLANS are at the same trust
level on the switch.
If its a crisco take a look a configuring up private VLANs on each
endpoint.
greg
-- Yeah - straight from the top of my dome As I rock, rock, rock, rock, rock the microphone
- Next message: Duane Arnold: "Re: pcanywhere from behind router to comp behind router"
- Previous message: paulsparrow_at_telus.net: "Re: pcanywhere from behind router to comp behind router"
- In reply to: Damian: "VLANS in a DMZ - good idea?"
- Next in thread: dgunner_at_lycos.co.uk: "Re: VLANS in a DMZ - good idea?"
- Reply: dgunner_at_lycos.co.uk: "Re: VLANS in a DMZ - good idea?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
