Summary
Zoning is an important concept in security design. Creating zones allows network administrators to set up varying levels of security for various groups of devices found in the network. With the segregation that a well-designed DMZ offers, even if devices in the less-secure zones are compromised, there is less risk of devices contained in the other zones becoming compromised. This chapter discussed what zones are and how they help you develop a secure network topology. This chapter also detailed DMZs, which form an integral portion of most network designs nowadays, and various techniques available to set them up. Finally, a case study focused on the capabilities of the PIX Firewall to set up zones on its many interfaces. The rest of this ...
Get Network Security Principles and Practices now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
