This article applies to:
Question:
How does Firewall Suite treat DMZs in reports?
Information:
If a Firewall Suite report is needed for the activity specifically to or from the DMZ, create a profile in which the DMZ IP range is specified in the "IPs Behind Firewall" list.
If a report is needed for a specific machine within the DMZ, such as a web server, create a new profile and simply include the machine's IP address in the "IPs Behind Firewall" list.
Notes:
The DMZ is also known as the de-militarized zone. DMZs provide an additional ethernet interface for hosting public servers on a network protected by the firewall, but isolated from the company LAN.
Firewall Suite does not treat DMZs as a separate category of security. A DMZ is simply considered another zone behind the firewall. Place all machines in the DMZ in the IPs Behind Firewall list within the configuration of a Firewall Suite profile and those machines will be treated as such rather than as a separate zone.
- This article was previously published as:
- NETIQKB1299