DMZ Server
DMZ is an abbreviation for “demilitarized zone” in English, and its Chinese name is “quarantine zone”, also known as “demilitarized zone”.
It is a buffer zone between the non security system and the security system to solve the problem that the external network access users cannot access the internal network server after the firewall is installed. This buffer is located in the small network area between the enterprise internal network and the external network. In this small network area, some server facilities that must be publicly available can be placed, such as enterprise web servers, FTP servers, and forums. On the other hand, through such a DMZ area, the internal network is more effectively protected. Because of this network deployment, compared to general firewall solutions, it adds another level for attackers from external networks.
Similar to port mapping, host mapping can be implemented.
Status: Enable or Disabled.
Interface: Choose WAN or ANY(All).
External IP Address: The external IP address that needs to be excluded.
Internal IP Address: The internal IP address that needs to be used for DMZ.
Exclusion Protocol: Select protocol (TCP, UCP, TCP plus UDP).
Exclude Port: The port number or range of port numbers that need to be excluded.
The above configuration maps packets from WAN interfaces with ports other than TCP (1024 65535) to intranet hosts 192.168.5.184.
At this point, if the 800 port of 192.168.5.184 is providing web services, and the address of the WAN interface is 183.157.116.161, then the web services of 192.168.5.184:800 can be accessed through 183.157.116.161:800.
最后编辑:todaair01 更新时间:2023-12-13 10:19
