Question

Jon wants to set up a trihomed DMZ. Which is the best method to do so? A. use dual firewalls B. use a single firewall with only two interfaces C. use a single three-legged firewall with three interfaces D. use dual firewalls with three interfaces

Answer 1

The best method to set up a trihomed DMZ is to use a single three-legged firewall with three interfaces. This configuration allows for better security and separation of traffic compared to other options.

Step-by-step explanation:

The best method to set up a trihomed DMZ is to use a single three-legged firewall with three interfaces.

This configuration allows for better security and separation of traffic compared to using dual firewalls or a single firewall with only two interfaces.

A three-legged firewall can effectively isolate the network segments, providing a dedicated interface for each network: the internal network, the DMZ, and the external network.

Answer 2

The correct option is C) Use a single three-legged firewall with three interfaces

Step-by-step explanation:

DMZ is an acronym for a demilitarized zone.

A DMZ network is one is situated between the internal network and the Internet. It is supported by an Internet Security and Acceleration (ISA) server.

The interfaces you'd get with the DMZ network are

• A public network (Internet Protocol-IP) address with a public interface
• An internal network interface with a private network (IP) address
• A DMZ interface with a public network (IP) address

Unlike the back-to-back DMZ settings, a trihomed DMZ is unable to use private IP addresses. To use the trihomed DMZ, public IP addresses are a must suitable requirement.

Cheers!