Stack Overflow
Stack Overflow

Questions tagged [dmz]

DMZ (Demilitarized Zone) is a physical or logical subnetwork that contains and exposes an organization's external-facing services to a larger and untrusted network, usually the Internet.

In computer security, a DMZ or Demilitarized Zone is a physical or logical subnetwork that contains and exposes an organization's external-facing services to a larger and untrusted network, usually the Internet. http://en.wikipedia.org/wiki/DMZ_%28computing%29

105 questions
36
votes
7 answers

Accessing data in internal production databases from a web server in DMZ

I'm working on an external web site (in DMZ) that needs to get data from our internal production database. All of the designs that I have come up with are rejected because the network department will not allow a connection of any sort (WCF, Oracle,…
aehiilrs
  • 1,245
  • 1
  • 11
  • 20
10
votes
3 answers

What is DMZ in networking?

I have to configure a Java application which is hosted in side a corporate network. So what is DMZ and how to get through to expose the services?
Bahans Sallu
  • 109
  • 1
  • 1
  • 3
8
votes
2 answers

Is it possible to restrict ingress and egress traffic between front end and back end Azure IaaS VMs strictly at the network level?

I would like to create an extra-paranoid hub-and-spoke DMZ setup on Azure using IaaS VMs. I have an public internet facing front end server (i.e. an IIS web server) that I'd like to severely lockdown. However, the front end requires access to some…
Jeff Moser
  • 19,727
  • 6
  • 65
  • 85
7
votes
2 answers

Should I add a DMZ in front of Kubernetes?

Is Kubernetes Ingress secure enough to avoid adding a DMZ in front of Kubernetes to expose Pods and Services ? What would happen if someone "hacked" into a Pod ? Thanks.
Guillaume
  • 759
  • 1
  • 9
  • 21
5
votes
1 answer

What's the most secure way to connect to Active Directory from a DMZ?

I got a web DMZ server, that hosts an "Extranet" ASP.NET application. I want that users should authenticate to this application using the same user and password that they use on their Windows at work. (we are using Active Directory) I want to know…
Bestter
  • 877
  • 1
  • 12
  • 29
5
votes
1 answer

How to install Windows Web Services API (WWSAPI) in a Server w/o Internet Access

I'm trying to use Visual Studio 2012 Remote Debugger in a Server with Windows Server 2008 R2 SP1 x64 located in a DMZ, in a Development Environment. This server doesn't access to the Internet directly but through a Firewall. So, I downloaded the…
Alberto Estrella
  • 671
  • 9
  • 19
4
votes
2 answers

Read remote file without file sharing

I'm trying to read a file on a remote computer however, ports for file sharing are blocked. Actually most porst are closed and only have access to execute WMI and Registry queries. Is it possible to read or pull data from a remote server using WMI…
El Chatu
  • 41
  • 1
  • 2
4
votes
1 answer

Python / JavaScript - WebSockets connection problem

I am having several errors with a WebSockets server. Previously, I had a lot of problems in acknowledging the server when a connection was established. In the bind address, I have the empty string which is equal to 0.0.0.0 so I thought that the…
Please help me
  • 73
  • 3
  • 13
4
votes
0 answers

iptables forward all but two ports (8000 and 22)

SOLVED: iptables -A PREROUTING -t nat -p tcp -d 1.1.1.1 --match multiport ! --dports 22,8000 -j DNAT --to-destination 2.2.2.2 I found the multiport option!! This works as expected. I am using 8000 for web and 22 for SSH. I am trying to forward all…
user2537383
  • 315
  • 8
  • 19
3
votes
1 answer

How to split an IdentityServer4 MVC application into front-end UI/API and back-end API for secure hosting in DMZ?

My customer insists that IdentityServer4 should not be hosted entirely in DMZ for security reasons, especially considering that it has direct access to the database server. From IdentityServer4 documentation and some other posts, it seems it should…
JustAMartin
  • 13,165
  • 18
  • 99
  • 183
3
votes
2 answers

ASP.Net Providers from web server in DMZ

We have an intranet asp.net web application which uses the OOTB ASP.net membership and role providers. Now we are planning to expose the application to internet, by moving the web server to the DMZ as represented in the following (crappy) text…
Nimesh Madhavan
  • 6,290
  • 6
  • 44
  • 55
2
votes
1 answer

Oracle DB (Intranet) ->(DMZ) Data Replication through a unidirectional Firewall

I have 2 Oracle 10.2.0.4 servers, one located within our internal intranet network, and another located in our DMZ network for public access. For security reasons I am unable to open up bidirectional firewall rules, I can only establish a DB link…
BJH
  • 11
  • 5
2
votes
1 answer

Create SSL Client Certificate on different Web Server

I have a web server (Apache) and configured a CA on this machine to create self-signed ssl client certificates (via openssl). Because the web server is in the DMZ, my question is: Is there any way to create the ssl client certs on a different…
thorben
  • 23
  • 2
2
votes
0 answers

Identity Server using external and internal URLs

I am currently using IdentityServer 4 for a project where an App communicates with a Web API that is on an internal server behind a reverse proxy. The problem i am facing has to do with the URLs returned in the discovery document. The App calls an…
RobertHegeraad
  • 81
  • 1
  • 1
  • 2
2
votes
1 answer

Enabling Reverse Proxy without Application Request Routing (ARR) on IIS 7.x

There are few questions around Reverse Proxy on Server in Presentation Zone (PZ). I'm trying to setup a reverse proxy on the IIS 7.x Windows 2012 Server(PZ). Do we really need ARR plugin to configure Reverse Proxy? Can you please suggest enable…
B V
  • 105
  • 2
  • 14
1
2 3 4 5 6 7