On 05/08/2015 11:31 AM, Ted Byers wrote:
I have been googling, and reading about using a DMZ.
Using a DMZ typically refers to devices directly connected to the internet, outside of a firewall. For your simulation, you would have machines in the wild<-->firewall<-->internal machines behind a firewall. The external web server would have it's connection to the DB server provided by the firewall using port forwarding. This is a very simple example.
But I have yet to find information adequate to allow me to simulate use of a DMZ using virtual machines. I find it easy to make virtual machines, and have no space for extra hardware. What I want to do is set up a couple virtual machines, representing a web server hosting code that represents the business logic layer and UI of a web application, and since it is data driven, the other hosts the database server. I then want to set up a small VM representing the inner firewall, separating the DMZ from the BL and DB server. Then there would be another web server set up in the DMZ, and another small VM to serve as the outer firewall (providing a boundary between the rest of the machines on my LAN and the DMZ).
The sources of information I have found so far appear to have presented the concepts well, but they provide little practical information on how to actually make a DMZ.
-- Ken Schneider SuSe since Version 5.2, June 1998 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org