If you have a nic from the dmz connected to your internal network it completely bypasses your firewall, which is usually considered a "bad thing" as it negates your security precautions.From: "Jennifer Fountain" <[EMAIL PROTECTED]> I need an opinion on a current design implementation in place. We have an ftp server sitting in our dmz. This box has two nics - one is plugged into the dmz hub and one is plugged into our network. I think this is a security risk and we should just allow internal users access to the box via the firewall by opening the port instead of having dual nics. they do not see a security risk. maybe i am just too new at this and need some education. what is the "best" way to implement this configuration?
Chris Berry
[EMAIL PROTECTED]
Systems Administrator
JM Associates
"Quick, easy, or cheap; pick any two."
_________________________________________________________________
STOP MORE SPAM with the new MSN 8 and get 2 months FREE* http://join.msn.com/?page=features/junkmail
