DMZ Design
Protect public services.
What Is a DMZ
A DMZ (demilitarized zone) is a network segment that sits between the untrusted internet and the trusted internal network.
It holds services that must be reachable from outside.
Why a DMZ Exists
Public services like web and mail servers must accept connections from the internet.
Placing them in a DMZ means that if one is hacked, the attacker is still separated from your internal systems.