DMZ

"DMZ" is also a: user

created by tim_three

(thing) by Teiresias (1.8 mon) (print) ? 1 C! Tue Nov 28 2000 at 13:46:41

The term DMZ (De-Militarized Zone), is generally used to describe the geographical area separating North Korea from South Korea in the 1950s, after the Korean War. The entire area was liberally hosed down with Agent Orange, a powerful defoliant, (toxic to humans, and allegedly the cause of many diseases in GIs) that stripped the land of vegitation, in an attempt to prevent cross border incursions

In computer networking and security terms however, it refers to a host, small network, or segment that sits in between a private network and the public network as a type of firewall, typically between your Internet router and host. The DMZ host initiates sessions for users on the private network when they send requests for connections on the public network to it (in effect acting like a proxy server). However, the DMZ host is not able to initiate a session back into a machine located inside the private network and only forwards packets that have already been requested. This prevents from outside coming into the private network (unless the attacker can mask the packets so they look like they're coming from a server requested by a current session). The DMZ host can house information that the private network operator wishes to be available to the outside world (ie webpages), although this information is open to attack.

(thing) by Stavr0 (1.2 mon) (print) ? Tue May 22 2001 at 18:07:45

disusered = D = do protocol

DMZ

(common) Literally, De-Militarized Zone. Figuratively, the portion of a private network that is visible through the network's firewalls (see firewall machine). Coined in the late 1990s as jargon, this term is now borderline techspeak.

-- Jargon file 4.3.0

(thing) by brainman (4.7 y) (print) ? Wed Oct 16 2002 at 2:53:40

From the game of Diplomacy, a DMZ (De-Militarized Zone) is a territory where two or more players agree not to enter without previous consent of the others.

This agreement is usually made to avoid conflict in critical spots of the game board, specially in the early game where alliances are not yet defined, but also on the late game where keeping a strong long-lasting alliance is critical.

The player who invades a DMZ is said to have 'broken' it and is usually seen as an agressor.

(thing) by lenz (2.7 y) (print) ? Sat May 08 2004 at 15:20:05

In networking jargon, a DMZ is usually a part of a private network that has part of its services available to the general internet traffic.

Imagine you want to host your own publicly available web server within your office, where you have a small LAN. You want people to be able to reach your office from the internet, because they need to query your web server and access its pages, but you would not want them to browse your own PC's or file servers. The solution in this case is usually to use a firewall (something like a properly configured linux box with multiple network cards or a hardware solution like a Cisco PIX) that allows for multiple protected zones on each of its nework cards.

In our simple case we would likely have three separate nertwork cards:

one going to the general internet;
one going to the office LAN; machines "behind" this port are rendered completely invisible from the internet, likely using NAT and port filtering;
one going to the DMZ; machines here are partially visible from the internet using appropriate port filtering rules.

This way you can share the same internet connection pipe between your web server and your office, with full security.

printable version
chaos

there is a reason for the presence of water on my desk	I was a bitter, purple-haired fat girl, and I had plenty of male friends	Infinite Jest	do protocol
DMT	The principles of nuclear weapon safety and meeting girls are remarkably similar	Agent Orange	demilitarized zone
WWIII can start in Afghanistan	Diplomacy	Operation Paul Bunyan	Great Firewall of China
FatBurger	firewall machine	disusered	Panmunjom
acid	Korean War	North Korea	borderline
Bridge of No Return	firewall	Plan 9	U.N.K.L.E.

Y'know, if you log in, you can write something here, or contact authors directly on the site. Create a New User if you don't already have an account.

Login
Password

remember me
password reminder
register

Everything2 Help

Just another sprinkling of indeterminacy
An afternoon in Jamaica
The insane cost of U.S. health care
Time is money
Proust effect
Rook's Wine Reviews
Lessons to be learned from Napster
Ada Lovelace
The God of Small Things
Consumer Broadband and Digital Television Promotion Act
Brainfuck
Salvador Dal�
down
Orion

Scaevola
Roman marriage	(thing)
rootbeer277
m&m's Ice Cream Treats	(review)
Transitional Man
Gus's Chalet	(review)
minnow
.410 bore	(thing)
shaogo
Phonautogram	(thing)
Morkel
Changing your sexuality	(idea)
teleny
Baron Samedi	(person)
Ouzo
The Great Barbershop Race Wars	(log)
Mannerisky
second language	(essay)
aneurin
British Monomarks	(idea)
FrankThomas
How and why do we (humans) have culture?	(essay)
lee_cad
Isaac	(person)
kalen
downvota	(poetry)
Andrew Aguecheek
Wstfgl	(thing)
ncc05
overheard at IHOP	(event)

E2 is a by-product of the existence of The Everything Development Company