D-Link DI-624M manual What is DMZ?, How do I configure the DMZ Host?, Demilitarized Zone

Page 72

DI-624M User’s Manual

Frequently Asked Questions

6 What is DMZ?

Demilitarized Zone:

In computer networks, a DMZ (demilitarized zone) is a computer host or small network inserted as a neutral zone between a company´s private network and the outside public network. It prevents outside users from getting direct access to a server that has company data. (The term comes from the geographic buffer zone that was set up between North Korea and South Korea following the UN police action in the early 1950s.) A DMZ is an optional and more secure approach to a firewall and effectively acts as a proxy server as well.

In a typical DMZ configuration for a small company, a separate computer (or host in network terms) receives requests from users within the private network for access to Web sites or other companies accessible on the public network. The DMZ host then initiates sessions for these requests on the public network. However, the DMZ host is not able to initiate a session back into the private network. It can only forward packets that have already been requested.

Users of the public network outside the company can access only the DMZ host. The DMZ may typically also have the company´s Web pages so these could be served to the outside world. However, the DMZ provides access to no other company data. In the event that an outside user penetrated the DMZ hosts security, the Web pages might be corrupted but no other company information would be exposed. D-Link, a leading maker of routers, is one company that sells products designed for setting up a DMZ

7 How do I configure the DMZ Host?

The DMZ feature allows you to forward all incoming ports to one computer on the local network. The DMZ, or Demilitarized Zone, will allow the specified computer to be exposed to the Internet. DMZ is useful when a certain application or game does not work through the firewall. The computer that is configured for DMZ will be completely vulnerable on the Internet, so it is suggested that you try opening ports from the Virtual Server or Firewall settings before using DMZ.

Step 1: Find the IP address of the computer you want to use as the DMZ host.

To find out how to locate the IP Address of the computer in Windows XP/2000/ME/9x or Macintosh operating systems please refer to Step 4 of the first question in this section (Frequently Asked Questions).

D-Link Systems, Inc.

72

Page 71 Page 73
Image 72
Page 71 Page 73
Contents Page Table of Contents Stats Wireless WarrantySystem Firmware Misc Device Info LogPackage Contents Minimum System RequirementsIntroduction Features and Benefits Reset Button DC Power ConnectorHardware Overview Auto MDI/MDIX LAN PortsLEDs Wireless Basics Standards-Based Technology Getting Started Using the Configuration Menu Wizard Home WizardWireless Channel Super G Mode DisabledHome Wireless Ssid Broadcast Security Authentication WEP Encryption Key TypeKeys Host Name MAC Address Home WAN Dynamic IP AddressClone MAC Address Home WAN Static IP AddressIP Address Subnet Mask Primary DNS Address Secondary DNSPPPoE Home WAN PPPoEAuto-reconnect LAN Home LANDhcp Home DhcpVirtual Server Advanced Virtual ServerDI-624M User’s Manual Applications Example #2Advanced Applications Name Trigger Port Trigger Type Public Port Public TypeFilters Advanced Filters IP FiltersIP Filters PortAdvanced Filters MAC Filters Filters MAC Filters Name MAC Address Dhcp ClientParental Control Advanced Parental Control URL BlockingURL Blocking Keywords Advanced Parental Control Domain Blocking Domain Blocking Permitted DomainsBlocked Domains Firewall Advanced FirewallFirewall Rules ActionDMZ Advanced DMZPerformance Advanced PerformanceDtim Interval Preamble Type CTS Mode Admin Tools AdminAdministrator Password User User is the User login nameTime Zone Default NTP Server Set the Time Daylight Saving TimeTools Time Load Settings from Local Hard Drive SystemTools System Firmware Upgrade Browse FirmwareTools Firmware Misc Tools MiscGaming Mode Dynamic DNS VPN Pass Through Ping Test Restart Device Block WAN PingDevice Info Status Device InfoLAN Log Status LogView Log Status Log Log Settings Email AddressStatus Wireless StatsStatus Stats Troubleshooting Default DI-624M User’s Manual Double-click on Network Adapters Why does my wireless connection keep dropping? Why can’t I get a wireless connection?Resetting the DI-624M to Factory Default Settings Forgot my encryption keyS e t Button Technical Specifications Physical Dimensions Wireless Transmit PowerPower Input WeightReceiver Sensitivity Frequently Asked Questions Why can´t I access the Web based configuration?How to tell straight-through cable from a crossover cable DI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual Click Specify an IP Address Click on the DNS Configuration tab Right-click on My Network Places and select Properties Highlight Internet Protocol TCP/IP and click PropertiesDI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual To set up your router How do I open ports on my router?Click Apply and then click Continue What is DMZ? How do I configure the DMZ Host?Demilitarized Zone DI-624M User’s Manual DI-624M User’s Manual How do I use PC Anywhere with my DI-624M router? What are virtual servers?Create a second entry as shown below Link Systems, Inc How can I use eDonkey behind my D-Link Router? How do I set up my router for Socom on my Playstation 2? Click on Advanced and then click FirewallClick Apply and then Continue How can I use Gamespy behind my D-Link router? Private Port Public Port Schedule AlwaysPrivate Port Public Port How do I configure my router for KaZaA and Grokster? How do I configure my router to play Warcraft 3? Click on Advanced and then click Virtual ServerConfigure the Game Port information on each computer How do I use NetMeeting with my D-Link Router?WAN LAN For File Sharing Click on Advanced and then Virtual Server Click OK DI-624M User’s Manual What is NAT? Change Admin Password Change the default LAN IP addressSet up MAC Filtering AppendixGlossary DI-624M User’s Manual DI-624M User’s Manual DI-624M User’s Manual Megabyte MB Megabits per second Mbps DI-624M User’s Manual DI-624M User’s Manual Virtual LAN Contacting Technical Support Tech Support for customers within the United StatesLink Technical Support over the Telephone 877 Tech Support for customers within CanadaWarranty Link Systems, Inc 101 Link Systems, Inc 102 Link Systems, Inc 103 Registration
Top Page Image Contents